CVE-2023-5916

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Nov 2, 2023

Updated: May 17, 2024

CWE ID 284

Summary

CVE-2023-5916 is a newly disclosed critical vulnerability that impacts the Lissy93 Dashy 2.1.1 Configuration Handler. The issue lies within the /config-manager/save file and is triggered by manipulating the config argument. This vulnerability bypasses access controls, allowing unauthorized access. The exploit has been made public, increasing the risk of remote attacks. Vulnerability database VDB has assigned the identifier VDB-244305 to this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tPbcx8
https://www.cve.org/CVERecord?id=CVE-2023-5916
https://nvd.nist.gov/vuln/detail/CVE-2023-5916

Back to Vulnerability Database

CVE-2023-5916

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations