CVE-2023-6566

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Dec 7, 2023

Updated: Dec 12, 2023

CWE ID 840

Summary

CVE-2023-6566 is a business logic error vulnerability affecting the microweber/microweber GitHub repository prior to version 2.0. Malicious users could exploit this flaw to gain unauthorized access or modify data under certain conditions, potentially leading to serious data breaches or unintended functionality. The vulnerability stems from insufficient input validation, allowing attackers to manipulate data in a way not intended by the application. Developers are urged to update their installations promptly to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microweber

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ttJhbz
https://www.cve.org/CVERecord?id=CVE-2023-6566
https://nvd.nist.gov/vuln/detail/CVE-2023-6566

Back to Vulnerability Database

CVE-2023-6566

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations