CVE-2023-4698

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Sep 1, 2023

CWE ID 20

Summary

CVE-2023-4698 is a vulnerability affecting the usememos/memos GitHub repository before version 0.13.2. The issue involves improper input validation, allowing attackers to execute arbitrary code when users download maliciously crafted memos. This could potentially lead to serious security consequences, including unauthorized access and data breaches. Users are strongly advised to update to the latest version of the repository to mitigate this risk. The vulnerability was discovered and reported to GitHub by an independent security researcher.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Usememos Memos

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sbPzux
https://www.cve.org/CVERecord?id=CVE-2023-4698
https://nvd.nist.gov/vuln/detail/CVE-2023-4698

Back to Vulnerability Database

CVE-2023-4698

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations