CVE-2023-52129

CVSS 3.1 Score 6.3 of 10 (medium)

Details

Published Jan 5, 2024
Updated: Jan 11, 2024
CWE ID 352

Summary

CVE-2023-52129 is a Cross-Site Request Forgery (CSRF) vulnerability that affects teachPress, specifically versions from n/a through 9.0.4. The vulnerability has a risk score of 65 and a base severity of MEDIUM. It requires user interaction and has a low impact on integrity and confidentiality. The exploitability score is 2.8, indicating the vulnerability can be exploited under certain conditions. The attack vector is through the network, but no privileges are required for exploitation. To remediate this vulnerability, organizations using teachPress should update to a version beyond 9.0.4.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share