Vulnerability Description
An issue was discovered with the JSESSION IDs in Xiamen Si Xin Communication Technology Video management system 3.1 thru 4.1 allows attackers to gain escalated privileges.
CVSS Score
8.8
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Video Management System Project | Video Management System | >= 3.1, <= 4.1 |
Related Weaknesses (CWE)
References
- https://github.com/kangjinlong1/Kang.github.io/blob/main/README.mdExploitThird Party Advisory
- https://github.com/kangjinlong1/Kang.github.io/blob/main/README.mdExploitThird Party Advisory
FAQ
What is CVE-2023-34656?
CVE-2023-34656 is a vulnerability with a CVSS score of 8.8 (HIGH). An issue was discovered with the JSESSION IDs in Xiamen Si Xin Communication Technology Video management system 3.1 thru 4.1 allows attackers to gain escalated privileges.
How severe is CVE-2023-34656?
CVE-2023-34656 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-34656?
Check the references section above for vendor advisories and patch information. Affected products include: Video Management System Project Video Management System.