CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-41892

Craft CMS is a platform for creating digital experiences. This is a high-impact, low-complexity attack vector. Users running Craft installations before 4.4.15 are encouraged to update to at least that version to mitigate the issue. This issue has been fixed in Craft CMS 4.4.15.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.936

EPSS Ranking 99.8%

CVSS Severity

CVSS v3 Score 10.0

References

Products affected by CVE-2023-41892

Craftcms » Craft Cms » Version: 4.4.0

cpe:2.3:a:craftcms:craft_cms:4.4.0
Craftcms » Craft Cms » Version: 4.4.1

cpe:2.3:a:craftcms:craft_cms:4.4.1
Craftcms » Craft Cms » Version: 4.4.10

cpe:2.3:a:craftcms:craft_cms:4.4.10
Craftcms » Craft Cms » Version: 4.4.10.1

cpe:2.3:a:craftcms:craft_cms:4.4.10.1
Craftcms » Craft Cms » Version: 4.4.11

cpe:2.3:a:craftcms:craft_cms:4.4.11
Craftcms » Craft Cms » Version: 4.4.12

cpe:2.3:a:craftcms:craft_cms:4.4.12
Craftcms » Craft Cms » Version: 4.4.13

cpe:2.3:a:craftcms:craft_cms:4.4.13
Craftcms » Craft Cms » Version: 4.4.2

cpe:2.3:a:craftcms:craft_cms:4.4.2
Craftcms » Craft Cms » Version: 4.4.3

cpe:2.3:a:craftcms:craft_cms:4.4.3
Craftcms » Craft Cms » Version: 4.4.4

cpe:2.3:a:craftcms:craft_cms:4.4.4
Craftcms » Craft Cms » Version: 4.4.5

cpe:2.3:a:craftcms:craft_cms:4.4.5
Craftcms » Craft Cms » Version: 4.4.6

cpe:2.3:a:craftcms:craft_cms:4.4.6
Craftcms » Craft Cms » Version: 4.4.6.1

cpe:2.3:a:craftcms:craft_cms:4.4.6.1
Craftcms » Craft Cms » Version: 4.4.7

cpe:2.3:a:craftcms:craft_cms:4.4.7
Craftcms » Craft Cms » Version: 4.4.7.1

cpe:2.3:a:craftcms:craft_cms:4.4.7.1
Craftcms » Craft Cms » Version: 4.4.8

cpe:2.3:a:craftcms:craft_cms:4.4.8
Craftcms » Craft Cms » Version: 4.4.9

cpe:2.3:a:craftcms:craft_cms:4.4.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-41892

Products

Pricing

Contact Us