CVE-2023-32315

216.73.216.233

· Published 24/08/2023 02:00 · Modified 21/12/2025 01:18 · Author: Cybersecurity and Infrastructure Security Agency

Labels: CVE-2023-32315

Essential information

Published: 24/08/2023 02:00
Modified: 21/12/2025 01:18
Author: Cybersecurity and Infrastructure Security Agency
Creator: Cybersecurity and Infrastructure Security Agency
CVSS: 8.6 HIGH (v3.1)
CISA KEV: Yes
CWE: —
CVSS vector: CVSS:3.1/AV:N/C:H/I:L/A:L

CVSS metrics

Description

Ignite Realtime Openfire contains a path traversal vulnerability that allows an unauthenticated attacker to access restricted pages in the Openfire Admin Console reserved for administrative users.

NVD status

NVD: View on NVD