CVE-2023-27510

Published May 10, 2023

Last updated a year ago

CVSS high 7.5

Overview

Description: JB Inquiry form contains an exposure of private personal information to an unauthorized actor vulnerability, which may allow a remote unauthenticated attacker to obtain information entered from forms created using the affected product. The affected products and versions are as follows: JB Inquiry form versions 0.6.1 and 0.6.0, JB Inquiry form versions 0.5.2, 0.5.1 and 0.5.0, and JB Inquiry form version 0.40.
Source: vultures@jpcert.or.jp
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Severity: HIGH

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:jubei:jb_inquiry_form:0.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "551D6264-5C5B-4CB5-A79E-77614A4619FA"
          },
          {
            "criteria": "cpe:2.3:a:jubei:jb_inquiry_form:0.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3845790E-96A1-41D8-8C63-34C38862075F"
          },
          {
            "criteria": "cpe:2.3:a:jubei:jb_inquiry_form:0.5.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6262C814-C397-4DAE-920F-CAFA9162F2B5"
          },
          {
            "criteria": "cpe:2.3:a:jubei:jb_inquiry_form:0.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4A7B3B7F-341D-42F2-846B-FA5A36924974"
          },
          {
            "criteria": "cpe:2.3:a:jubei:jb_inquiry_form:0.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4D04C8BD-88F3-4070-AC82-61CB32CAC814"
          },
          {
            "criteria": "cpe:2.3:a:jubei:jb_inquiry_form:0.40:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F3C55CD-138D-4B56-A59A-A90F30674ADC"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References