Security Vulnerabilities - CVEs Published In June 2023
CVE-2023-29357
Microsoft SharePoint Server Elevation of Privilege Vulnerability
Known exploited
CVSS Score
9.8
EPSS Score
0.944
Published
2023-06-14
Windows GDI Elevation of Privilege Vulnerability
CVSS Score
7.8
EPSS Score
0.026
Published
2023-06-14
Potential XML External Entity Injection in ArcSight Logger versions prior to 7.3.0.
CVSS Score
9.1
EPSS Score
0.001
Published
2023-06-13
Potential Cross-Site Scripting in ArcSight Logger versions prior to 7.3.0
CVSS Score
6.1
EPSS Score
0.002
Published
2023-06-13
Discourse is an open source discussion platform. Prior to version 3.0.4 of the `stable` branch and version 3.1.0.beta5 of the `beta` and `tests-passed` branches, if a site has modified their general category permissions, they could be set back to the default. This issue is patched in version 3.0.4 of the `stable` branch and version 3.1.0.beta5 of the `beta` and `tests-passed` branches. A workaround, only if you are modifying the general category permissions, is to use a new category for the same purpose.
CVSS Score
2.0
EPSS Score
0.001
Published
2023-06-13
Discourse is an open source discussion platform. Prior to version 3.0.4 of the `stable` branch and version 3.1.0.beta5 of the `beta` and `tests-passed` branches, the lack of restrictions on the iFrame tag makes it easy for an attacker to exploit the vulnerability and hide subsequent comments from other users. This issue is patched in version 3.0.4 of the `stable` branch and version 3.1.0.beta5 of the `beta` and `tests-passed` branches. There are no known workarounds.
CVSS Score
5.4
EPSS Score
0.001
Published
2023-06-13
Discourse is an open source discussion platform. Prior to version 3.0.4 of the `stable` branch and version 3.1.0.beta5 of the `beta` and `tests-passed` branches, multiple duplicate topics could be created if topic embedding is enabled. This issue is patched in version 3.0.4 of the `stable` branch and version 3.1.0.beta5 of the `beta` and `tests-passed` branches. As a workaround, disable topic embedding if it has been enabled.
CVSS Score
3.1
EPSS Score
0.002
Published
2023-06-13
Discourse is an open source discussion platform. Prior to version 3.0.4 of the `stable` branch and version 3.1.0.beta5 of the `beta` and `tests-passed` branches, an attacker could use the new topics dismissal endpoint to reveal the number of topics recently created (but not the actual content thereof) in categories they didn't have access to. This issue is patched in version 3.0.4 of the `stable` branch and version 3.1.0.beta5 of the `beta` and `tests-passed` branches. There are no known workarounds.
CVSS Score
4.8
EPSS Score
0.001
Published
2023-06-13
The underlying feedback mechanism of
Rockwell Automation's FactoryTalk System Services that transfers the FactoryTalk Policy Manager rules to relevant devices on the network does not verify that the origin of the communication is from a legitimate local client device. This may allow a threat actor to craft a malicious website that, when visited, will send a malicious script that can connect to the local WebSocket endpoint and wait for events as if it was a valid client device. If successfully exploited, this would allow a threat actor to receive information including whether FactoryTalk Policy Manager is installed and potentially the entire security policy.
CVSS Score
4.1
EPSS Score
0.0
Published
2023-06-13
A denial-of-service vulnerability exists in Rockwell Automation FactoryTalk Transaction Manager. This vulnerability can be exploited by sending a modified packet to port 400. If exploited, the application could potentially crash or experience a high CPU or memory usage condition, causing intermittent application functionality issues. The application would need to be restarted to recover from the DoS.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-06-13