Missing Authorization vulnerability in POSIMYTH Nexter
CVE-2023-45658

7.6HIGH

Key Information:

Vendor: WordPress
Status: Nexter
Vendor: CVE Published:; 19 June 2024

Summary

The Nexter product from POSIMYTH contains a vulnerability due to missing authorization checks, allowing unauthorized users to gain access to restricted functionalities. This vulnerability affects versions n/a through 2.0.3 of Nexter, posing significant risks that could lead to exploitation. It is crucial for users and administrators of Nexter to ensure that they take appropriate security measures to mitigate the threat associated with this vulnerability.

Affected Version(s)

Nexter <= 2.0.3

References

https://patchstack.com/database/vulnerability/nexter/word...

vdb-entry

CVSS V3.1

Score:

7.6

Severity:

HIGH

Confidentiality:

Low

Integrity:

High

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 19, 2024
Vulnerability Reserved
Oct 10, 2023

Credit

Rafie Muhammad (Patchstack)