Lucene search
HistoryNov 30, 2023 - 4:15 p.m.
CVE-2023-26533
cve-2023-26533
information security
vulnerability
gesundheit bewegt gmbh zippy
unauthorized actor
nvd
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
6.4 Medium
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
18.2%
Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Gesundheit Bewegt GmbH Zippy.This issue affects Zippy: from n/a through 1.6.1.
Affected configurations
Node
gesundheit_bewegt_gmbhzippyRangeβ€1.6.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| gesundheit-bewegt:zippy | gesundheit-bewegt zippy | le | 1.6.1 |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "zippy",
"product": "Zippy",
"vendor": "Gesundheit Bewegt GmbH",
"versions": [
{
"changes": [
{
"at": "1.6.2",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.6.1",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
cvelist
cvelist
prion
prion
Code injection
2023-11-30 16:15:00
nvd
nvd
CVE-2023-26533
2023-11-30 16:15:08
wordfence
wordfence
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
6.4 Medium
AI Score
Confidence
High
0.0005 Low
EPSS
Percentile
18.2%
Related for CVE-2023-26533