How severe is CVE-2024-43401?

This vulnerability has a severity rating of HIGH with a CVSS score of 8 out of 10.

What type of vulnerability is CVE-2024-43401?

This is classified as CWE-269, which is a common weakness in software security.

CVE-2024-43401

HIGH Year: 2024

CVSS v3 Score

8.0

High

Weakness Type

CWE-269

View all →

Vulnerability Description

XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. A user without script/programming right can trick a user with elevated rights to edit a content with a malicious payload using a WYSIWYG editor. The user with elevated rights is not warned beforehand that they are going to edit possibly dangerous content. The payload is executed at edit time. This vulnerability has been patched in XWiki 15.10RC1.

CVE-2021-1712

HIGH

CVSS:8.0(High)

Microsoft SharePoint Elevation of Privilege Vulnerability

CWE-2692021

CVE-2021-1719

HIGH

CVSS:8.0(High)

Microsoft SharePoint Elevation of Privilege Vulnerability

CWE-2692021

CVE-2021-34537

HIGH

CVSS:8.0(High)

Windows Bluetooth Driver Elevation of Privilege Vulnerability

CWE-2692021

CVE-2021-40464

HIGH

CVSS:8.0(High)

Windows Nearby Sharing Elevation of Privilege Vulnerability

CWE-2692021

CVE-2021-41348

HIGH

CVSS:8.0(High)

Microsoft Exchange Server Elevation of Privilege Vulnerability

CWE-2692021

CVE-2023-0872

HIGH

CVSS:8.0(High)

The Horizon REST API includes a users endpoint in OpenMNS Horizon 31.0.8 and versions earlier than 32.0.2 on multiple platforms is vulnerable to elevation of privilege. The solution is to upgrade to M...

CWE-2692023

CVE-2024-43401

Vulnerability Description

Related Vulnerabilities

CVE-2021-1712

CVE-2021-1719

CVE-2021-34537

CVE-2021-40464

CVE-2021-41348

CVE-2023-0872