Lucene search
@huntrdevCVELIST:CVE-2023-5839HistoryOct 29, 2023 - 12:00 a.m.
CVE-2023-5839 Privilege Chaining in hestiacp/hestiacp
2023-10-2900:00:19
CWE-268
@huntrdev
www.cve.org
cve-2023-5839
privilege chaining
github repository
8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.2%
Privilege Chaining in GitHub repository hestiacp/hestiacp prior to 1.8.9.
CNA Affected
[
{
"vendor": "hestiacp",
"product": "hestiacp/hestiacp",
"versions": [
{
"version": "unspecified",
"lessThan": "1.8.9",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2023-5839
2023-10-29 01:15:41
huntr
huntr
Privilege Escalation to admin from any other users
2023-10-14 20:28:01
prion
prion
Privilege escalation
2023-10-29 01:15:00
nvd
nvd
CVE-2023-5839
2023-10-29 01:15:41
osv
osv
CVE-2023-5839
2023-10-29 01:15:41
8.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.2%
Related for CVELIST:CVE-2023-5839