How severe is CVE-2023-1699?

CVE-2023-1699 has a CVSS v3 score of 4.3 (MEDIUM).

CVE-2023-1699

Name: nexpose
Author: rapid7

4.3MEDIUM

Rapid7 Nexpose versions 6.6.186 and below suffer from a forced browsing vulnerability. This vulnerability allows an attacker to manipulate URLs to forcefully browse to and access administrative pages

Published: 3/30/2023Updated: 11/21/2024

Description

Rapid7 Nexpose versions 6.6.186 and below suffer from a forced browsing vulnerability. This vulnerability allows an attacker to manipulate URLs to forcefully browse to and access administrative pages. This vulnerability is fixed in version 6.6.187.

AI AnalysisPowered by AI

Affected Products

rapid7nexpose

References

https://docs.rapid7.com/release-notes/nexpose/20230329/
Release Notes
https://docs.rapid7.com/release-notes/nexpose/20230329/
Release Notes