CVE-2023-1784

Published: Mar 31, 2023Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

A vulnerability was found in jeecg-boot 3.5.0 and classified as critical. This issue affects some unknown processing of the component API Documentation. The manipulation leads to improper authentication. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-224699.

Affected (1)

Products: Jeecg: Jeecg Boot

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Jeecg Jeecg Boot	Version 3.5.0

Related CWEs

Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (6)

https://note.youdao.com/ynoteshare/index.html?id=7eb8fc804ea3544d8add43749a09173e

Source: cna@vuldb.com

Broken Link

https://vuldb.com/?ctiid.224699

Source: cna@vuldb.com

Permissions RequiredThird Party Advisory

https://vuldb.com/?id.224699

Source: cna@vuldb.com

Third Party Advisory

https://note.youdao.com/ynoteshare/index.html?id=7eb8fc804ea3544d8add43749a09173e

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

https://vuldb.com/?ctiid.224699

Source: af854a3a-2127-422b-91ae-364da2661108

Permissions RequiredThird Party Advisory

https://vuldb.com/?id.224699

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.