CVE Catalog

CVE-2023-4304

LowCVSS 3.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.48%

37th percentile — higher than 37% of all known CVEs

Summary

Business logic errors in the GitHub repository froxlor/froxlor prior to version 2.0.22 and 2.1.0 may lead to unauthorized access or improper application behavior.

Risk Assessment

Organizations using the vulnerable version may be exposed to attacks that could result in data loss or system integrity breaches.

Recommendation

It is recommended to upgrade to version 2.0.22 or 2.1.0 to mitigate these business logic errors.

Original NVD description (English source)

Business Logic Errors in GitHub repository froxlor/froxlor prior to 2.0.22,2.1.0.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS