Lucene search
HistoryOct 26, 2023 - 10:15 p.m.
CVE-2023-43352
cmsmadesimple
security vulnerability
code execution
local attacker
nvd
cve-2023-43352
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
29.2%
An issue in CMSmadesimple v.2.2.18 allows a local attacker to execute arbitrary code via a crafted payload to the Content Manager Menu component.
Affected configurations
Node
cmsmadesimplecms_made_simpleMatch2.2.18
| CPE | Name | Operator | Version |
|---|---|---|---|
| cmsmadesimple:cms_made_simple | cmsmadesimple cms made simple | eq | 2.2.18 |
Related
cvelist
cvelist
CVE-2023-43352
2023-10-26 00:00:00
prion
prion
Design/Logic Flaw
2023-10-26 22:15:00
nvd
nvd
CVE-2023-43352
2023-10-26 22:15:08
openvas
openvas
CMS Made Simple <= 2.2.21 Multiple Vulnerabilities
2023-09-29 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
29.2%
Related for CVE-2023-43352