CVE-2023-46393

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 27, 2023

Updated: Nov 7, 2023

Summary

CVE-2023-46393 is a newly discovered vulnerability affecting gougucms version 4.08.18. This issue permits attackers to manipulate password reset functionalities by crafting malicious packets. Consequently, unauthorized users can arbitrarily reset the passwords of other users within the affected system. This vulnerability poses a significant risk to security, especially in environments where multiple users have access to the system. It is recommended that users upgrade to the latest version of gougucms to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tGo3uN
https://www.cve.org/CVERecord?id=CVE-2023-46393
https://nvd.nist.gov/vuln/detail/CVE-2023-46393

Back to Vulnerability Database

CVE-2023-46393

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations