How severe is CVE-2023-1699?

CVE-2023-1699 has a CVSS v3 score of 4.3 (MEDIUM).

CVE-2023-1699

Name: nexpose
Author: rapid7

4.3MEDIUM

Rapid7 Nexpose versions 6.6.186 and below suffer from a forced browsing vulnerability. This vulnerability allows an attacker to manipulate URLs to forcefully browse to and access administrative pages

Publicado: 3/30/2023Actualizado: 11/21/2024

Descripción

Rapid7 Nexpose versions 6.6.186 and below suffer from a forced browsing vulnerability. This vulnerability allows an attacker to manipulate URLs to forcefully browse to and access administrative pages. This vulnerability is fixed in version 6.6.187.

Análisis IAImpulsado por IA

Productos Afectados

rapid7nexpose

Referencias

https://docs.rapid7.com/release-notes/nexpose/20230329/
Release Notes
https://docs.rapid7.com/release-notes/nexpose/20230329/
Release Notes