Vulnerability Details CVE-2024-23054
An issue in Plone Docker Official Image 5.2.13 (5221) open-source software that could allow for remote code execution due to a package listed in ++plone++static/components not existing in the public package index (npm).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.029
EPSS Ranking 85.6%
CVSS Severity
CVSS v3 Score 9.8
References
Products affected by CVE-2024-23054
-
cpe:2.3:a:plone:plone_docker_official_image:5.2.13