CVE-2023-49345

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 14, 2023

Updated: Dec 20, 2023

CWE ID 377

CWE ID 668

Summary

CVE-2023-49345 is a vulnerability affecting the Budgie Extras Takeabreak applet. This issue arises from the temporary data that is exchanged between application components being stored in an accessible location. Any local user can potentially view or manipulate this data, raising security concerns. An attacker could pre-create and control this file to present false information or deny access to the application and panel.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tk-vqg
https://www.cve.org/CVERecord?id=CVE-2023-49345
https://nvd.nist.gov/vuln/detail/CVE-2023-49345

Back to Vulnerability Database

CVE-2023-49345

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations