Lucene search
@huntrdevCVE-2023-5498HistoryOct 10, 2023 - 10:15 a.m.
CVE-2023-5498
2023-10-1010:15:10
CWE-352
@huntrdev
web.nvd.nist.gov
64
cve-2023-5498
csrf
github
repository
nvd
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
4.7
Confidence
High
EPSS
0.001
Percentile
21.7%
Cross-Site Request Forgery (CSRF) in GitHub repository chiefonboarding/chiefonboarding prior to v2.0.47.
Affected configurations
Node
chiefonboardingchiefonboardingRange<2.0.47
| Vendor | Product | Version | CPE |
|---|---|---|---|
| chiefonboarding | chiefonboarding | * | cpe:2.3:a:chiefonboarding:chiefonboarding:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"vendor": "chiefonboarding",
"product": "chiefonboarding/chiefonboarding",
"versions": [
{
"version": "unspecified",
"lessThan": "v2.0.47",
"status": "affected",
"versionType": "custom"
}
]
}
]Related
huntr
huntr
CSRF on marking an admin task as complete
2023-09-30 15:18:44
osv
osv
CVE-2023-5498
2023-10-10 10:15:10
cvelist
cvelist
vulnrichment
vulnrichment
nvd
nvd
CVE-2023-5498
2023-10-10 10:15:10
prion
prion
Cross site request forgery (csrf)
2023-10-10 10:15:00
CVSS3
4.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
AI Score
4.7
Confidence
High
EPSS
0.001
Percentile
21.7%
Related for CVE-2023-5498