Lucene search
HistoryJan 02, 2024 - 9:15 p.m.
CVE-2023-47458
cve-2023-47458
springblade
security issue
remote attack
privilege escalation
nvd
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.5 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.4%
An issue in SpringBlade v.3.7.0 and before allows a remote attacker to escalate privileges via the lack of permissions control framework.
Affected configurations
Node
bladexspringbladeRange≤3.7.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| bladex:springblade | bladex springblade | le | 3.7.0 |
Related
osv
osv
CVE-2023-47458
2024-01-02 21:15:09
prion
prion
Design/Logic Flaw
2024-01-02 21:15:00
nvd
nvd
CVE-2023-47458
2024-01-02 21:15:09
cvelist
cvelist
CVE-2023-47458
2024-01-02 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.5 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.4%
Related for CVE-2023-47458