Lucene search
PatchstackCVE-2024-45453HistorySep 23, 2024 - 1:15 a.m.
CVE-2024-45453
2024-09-2301:15:11
CWE-290
Patchstack
web.nvd.nist.gov
15
authentication
bypass
spoofing
vulnerability
peter hardy-vandoorn
maintenance redirect
accessing functionality
acls
cve-2024-45453
CVSS3
3.7
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
4.4
Confidence
High
EPSS
0
Percentile
9.6%
Authentication Bypass by Spoofing vulnerability in Peter Hardy-vanDoorn Maintenance Redirect allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Maintenance Redirect: from n/a through 2.0.1.
Affected configurations
Node
peter_hardy-vandoornmaintenance_redirectRange≤2.0.1wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| peter_hardy-vandoorn | maintenance_redirect | * | cpe:2.3:a:peter_hardy-vandoorn:maintenance_redirect:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "jf3-maintenance-mode",
"product": "Maintenance Redirect",
"vendor": "Peter Hardy-vanDoorn",
"versions": [
{
"changes": [
{
"at": "2.1.0",
"status": "unaffected"
}
],
"lessThanOrEqual": "2.0.1",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
nvd
nvd
CVE-2024-45453
2024-09-23 01:15:11
cvelist
cvelist
wordfence
wordfence
CVSS3
3.7
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
AI Score
4.4
Confidence
High
EPSS
0
Percentile
9.6%
Related for CVE-2024-45453