WEB NodeBB socket.io Attempt state 1

Rule ID

1232337

Severity

Medium

Description

An elevation of privilege vulnerability has been reported in NodeBB. The vulnerability is due to insufficient validation of messages sent to the socket.io module.

Impact

Privilege escalation

Recommendation

Update vendor's patch.

IPS Category

Exploits

IPS Anomaly Group

N/A

IPS Rule Default Action

Allow

Reference

CVE-2022-46164

CVE-2023-30591

T1068

Keyword

N/A

Created At

2023/03/13

Updated At

2023/10/24

This website uses cookies to ensure you get the best experience on our website.