Information Disclosure in Dradis by Dradis Team
CVE-2023-50458

3.5LOW

Key Information:

Vendor: Dradisframework
Status: Dradis
Vendor: CVE Published:; 10 July 2025

🔔 Create Dradisframework Vulnerability Alert

What is CVE-2023-50458?

A vulnerability in Dradis prior to version 4.11.0 allows the Output Console to potentially expose data concerning the job queue of other users. This flaw may lead to unauthorized access to sensitive information, highlighting the importance of updating to secure versions to mitigate the risk of such exposures.

Affected Version(s)

Dradis 0 < 4.11.0

References

https://github.com/dradis/dradis-ce/tags

https://securiteam.io/2025/07/03/cve-2023-50458-dradis-in...

CVSS V3.1

Score:

3.5

Severity:

LOW

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 10, 2025
Vulnerability Reserved
Dec 10, 2023