Arbitrary File Read Vulnerability in Jeecg P3 Biz Chat by Jeecg
CVE-2023-33510

7.5HIGH

Key Information:

Vendor
CVE Published:
7 June 2023

What is CVE-2023-33510?

The Jeecg P3 Biz Chat version 1.0.5 is susceptible to an arbitrary file read vulnerability that allows remote attackers to leverage specific parameters to access sensitive files on the server. This flaw could lead to unintended exposure of confidential data, posing serious security risks.

References

EPSS Score

76% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.