Lucene search
HistoryOct 10, 2023 - 1:15 a.m.
CVE-2023-44846
seacms
arbitrary code execution
admin_notify.php
cve-2023-44846
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.9
Confidence
High
EPSS
0.001
Percentile
39.0%
An issue in SeaCMS v.12.8 allows an attacker to execute arbitrary code via the admin_ notify.php component.
Affected configurations
Node
seacmsseacmsRange≤12.8
Related
cvelist
cvelist
CVE-2023-44846
2023-10-10 00:00:00
cve
cve
CVE-2023-44846
2023-10-10 01:15:10
prion
prion
Code injection
2023-10-10 01:15:00
vulnrichment
vulnrichment
CVE-2023-44846
2023-10-10 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.9
Confidence
High
EPSS
0.001
Percentile
39.0%
Related for NVD:CVE-2023-44846