CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-32669

Authorization bypass vulnerability in BuddyBoss 2.2.9 version, the exploitation of which could allow an authenticated user to access and rename other users' albums. This vulnerability can be exploited by changing the album identification (id).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.0%

CVSS Severity

CVSS v3 Score 5.4

References

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-budyboss
https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-budyboss

Products affected by CVE-2023-32669

Buddyboss » Buddyboss » Version: 2.2.9

cpe:2.3:a:buddyboss:buddyboss:2.2.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-32669

Products

Pricing

Contact Us