CVE-2023-5839
8.8
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Summary
Privilege Chaining in GitHub repository hestiacp/hestiacp prior to 1.8.9.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| hestiacp | hestiacp/hestiacp | unspecified < 1.8.9 | affected |
Weaknesses
- CWE-268: CWE-268 Privilege Chaining
ADP Enrichment
CVE Program Container
Additional References
- https://huntr.com/bounties/21125f12-64a0-42a3-b218-26b9945a5bc0
- https://github.com/hestiacp/hestiacp/commit/acb766e1db53de70534524b3fbc2270689112630
CISA ADP Vulnrichment
- SSVC:
- Exploitation: poc
- Automatable: no
- Technical Impact: total
References
- https://huntr.com/bounties/21125f12-64a0-42a3-b218-26b9945a5bc0
- https://github.com/hestiacp/hestiacp/commit/acb766e1db53de70534524b3fbc2270689112630
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.