CVE-2023-51450

CVSS 3.1 Score 5.6 of 10 (medium)

Details

Published Feb 22, 2024

CWE ID 78

Summary

CVE-2023-51450 is a critical vulnerability affecting the baserCMS website development framework. Before version 5.0.9, the site search feature was susceptible to OS Command Injection, allowing malicious actors to execute arbitrary system commands. This issue poses a significant security risk as it can lead to unauthorized access, data theft, or even system compromise. Version 5.0.9 contains a fix to mitigate this vulnerability and users are advised to update their installations promptly.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/t29YW-
https://www.cve.org/CVERecord?id=CVE-2023-51450
https://nvd.nist.gov/vuln/detail/CVE-2023-51450

Back to Vulnerability Database

CVE-2023-51450

CVSS 3.1 Score 5.6 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations