CVE-2023-3236

2023-06-1407:15:09

CWE-918

[email protected]

web.nvd.nist.gov

cve-2023-3236

vulnerability

critical

mccms

remote

server-side

request forgery

vdb-231507

nvd

8.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

27.9%

JSON

CPE configuration

Vulners

NVD

chshcmsmccmsMatch2.6.0

chshcmsmccmsMatch2.6.1

chshcmsmccmsMatch2.6.2

chshcmsmccmsMatch2.6.3

chshcmsmccmsMatch2.6.4

chshcmsmccmsMatch2.6.5

VendorProductVersionCPE
chshcmsmccms2.6.0cpe:2.3:a:chshcms:mccms:2.6.0:*:*:*:*:*:*:*
chshcmsmccms2.6.1cpe:2.3:a:chshcms:mccms:2.6.1:*:*:*:*:*:*:*
chshcmsmccms2.6.2cpe:2.3:a:chshcms:mccms:2.6.2:*:*:*:*:*:*:*
chshcmsmccms2.6.3cpe:2.3:a:chshcms:mccms:2.6.3:*:*:*:*:*:*:*
chshcmsmccms2.6.4cpe:2.3:a:chshcms:mccms:2.6.4:*:*:*:*:*:*:*
chshcmsmccms2.6.5cpe:2.3:a:chshcms:mccms:2.6.5:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
chshcms	mccms	2.6.0	cpe:2.3:a:chshcms:mccms:2.6.0:::::::*
chshcms	mccms	2.6.1	cpe:2.3:a:chshcms:mccms:2.6.1:::::::*
chshcms	mccms	2.6.2	cpe:2.3:a:chshcms:mccms:2.6.2:::::::*
chshcms	mccms	2.6.3	cpe:2.3:a:chshcms:mccms:2.6.3:::::::*
chshcms	mccms	2.6.4	cpe:2.3:a:chshcms:mccms:2.6.4:::::::*
chshcms	mccms	2.6.5	cpe:2.3:a:chshcms:mccms:2.6.5:::::::*

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "mccms",
    "versions": [
      {
        "version": "2.6.0",
        "status": "affected"
      },
      {
        "version": "2.6.1",
        "status": "affected"
      },
      {
        "version": "2.6.2",
        "status": "affected"
      },
      {
        "version": "2.6.3",
        "status": "affected"
      },
      {
        "version": "2.6.4",
        "status": "affected"
      },
      {
        "version": "2.6.5",
        "status": "affected"
      }
    ]
  }
]