What is CVE-2023-6760?

CVE-2023-6760 is a medium-severity vulnerability in Thecosy Icecms, classified under CWE-1018. CVSS score: 6.3/10. Published 2023-12-13.

How severe is CVE-2023-6760?

Medium severity. CVSS v3 base score is 6.3 out of 10.

Vulnerability in Thecosy Icecms

CVE-2023-6760

A vulnerability classified as critical was found in Thecosy IceCMS up to 2.0.1. This vulnerability affects unknown code. The manipulation leads to manage user sessions. The attack can be initiated remotely. The exploit has been disclosed t…

EPSS: 0.002 (37.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L.

Affected products

Thecosy Icecms — versions 2.0.0, 2.0.1

Weakness classification (CWE)

CWE-1018

References

vuldb.com/ (vdb-entry)
vuldb.com/ (signature, permissions-required)
39.106.130.187/yue/yue.html (exploit)

Frequently asked questions

What is CVE-2023-6760?: CVE-2023-6760 is a medium-severity vulnerability in Thecosy Icecms, classified under CWE-1018. CVSS score: 6.3/10. Published 2023-12-13.
How severe is CVE-2023-6760?: Medium severity. CVSS v3 base score is 6.3 out of 10.