CVE-2023-51804

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 13, 2024

Updated: Jan 24, 2024

CWE ID 918

Summary

CVE-2023-51804 is a vulnerability affecting rymcu forest version 0.02. This issue enables a remote attacker to gain unauthorized access to sensitive information by manipulating the HTTP body URL in the UploadController file within the com.rymcu.forest.web.api.common package. By exploiting this vulnerability, an attacker can bypass security restrictions and extract confidential data, potentially leading to serious data breaches or further system compromises. This vulnerability highlights the importance of secure coding practices and regular software updates to mitigate similar risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/t7TbA6
https://www.cve.org/CVERecord?id=CVE-2023-51804
https://nvd.nist.gov/vuln/detail/CVE-2023-51804

Back to Vulnerability Database

CVE-2023-51804

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations