Lucene search

K

MitreVULNRICHMENT:CVE-2023-43194

HistoryNov 02, 2023 - 12:00 a.m.

CVE-2023-43194

2023-11-0200:00:00

mitre

github.com

submitty

v22.06.00

incorrect access control

forum post

deletion

AI Score

6.8

Confidence

High

SSVC

Exploitation

none

Automatable

yes

Technical Impact

partial

Submitty before v22.06.00 is vulnerable to Incorrect Access Control. An attacker can delete any post in the forum by modifying request parameter.

References

fuchai.net/cve/CVE-2023-43194

github.com/Submitty/Submitty/pull/8032

AI Score

6.8

Confidence

High

SSVC

Exploitation

none

Automatable

yes

Technical Impact

partial

Related for VULNRICHMENT:CVE-2023-43194

nvd1 osv1 prion1 cvelist1 cve1