PT-2023-24464 · Bookeen · Bookreen

Anil Celi̇k

Publicado

2023-09-05

Atualizado

2026-05-22

CVE-2023-3374

CVSS v3.1

9.8

Crítica

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Bookreen versions prior to 3.0.0

Description The issue is related to an Incomplete List of Disallowed Inputs vulnerability in Bookreen, which allows Privilege Escalation.

Recommendations For versions prior to 3.0.0, update to version 3.0.0 or later to resolve the issue.

Correção

LPE

Incomplete List of Disallowed Inputs

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

CVE-2023-3374

Bookreen