CVE-2023-5548

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Nov 9, 2023

Updated: Nov 16, 2023

CWE ID 349

CWE ID 345

Summary

CVE-2023-5548 is a newly identified vulnerability affecting file serving endpoints. The issue lies in insufficient revision number limitations, making these endpoints susceptible to cache poisoning attacks. Attackers can exploit this weakness by supplying manipulated cache data, potentially leading to unauthorized file access or modification. To mitigate this risk, stronger revision number limitations must be implemented.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Moodle
Fedora Operating System

Affected Vendors

Moodle HQ
Fedora Project

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s-aamX
https://www.cve.org/CVERecord?id=CVE-2023-5548
https://nvd.nist.gov/vuln/detail/CVE-2023-5548

Back to Vulnerability Database