CVE-2023-27087
First published: Tue Mar 21 2023(Updated: )
Permissions vulnerabiltiy found in Xuxueli xxl-job v2.2.0, v 2.3.0 and v.2.3.1 allows attacker to obtain sensitive information via the pageList parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| xuxueli xxl-job | =2.2.0 | |
| xuxueli xxl-job | =2.3.0 | |
| xuxueli xxl-job | =2.3.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this permissions vulnerability?
The vulnerability ID for this permissions vulnerability is CVE-2023-27087.
What is the severity level of CVE-2023-27087?
The severity level of CVE-2023-27087 is high, with a severity value of 7.5.
How does the permissions vulnerability in Xuxueli xxl-job v2.2.0, v 2.3.0, and v.2.3.1 allow an attacker to obtain sensitive information?
The permissions vulnerability in Xuxueli xxl-job v2.2.0, v 2.3.0, and v.2.3.1 allows an attacker to obtain sensitive information via the pageList parameter.
Which versions of Xuxueli xxl-job are affected by this permissions vulnerability?
This permissions vulnerability affects Xuxueli xxl-job v2.2.0, v 2.3.0, and v.2.3.1.
Is there any official reference or documentation about this permissions vulnerability?
Yes, you can find more information about this permissions vulnerability in the official reference at https://github.com/xuxueli/xxl-job/issues/3096.
- collector/nvd-index
- agent/references
- agent/author
- agent/severity
- agent/type
- agent/event
- agent/tags
- agent/description
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/xuxueli
- canonical/xuxueli xxl-job
- version/xuxueli xxl-job/2.2.0
- version/xuxueli xxl-job/2.3.0
- version/xuxueli xxl-job/2.3.1