Vulnerabilities > CVE-2023-39691 - Unspecified vulnerability in Kodcloud Kodbox

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

kodcloud

critical

NVD

Published: 2024-01-16

Updated: 2024-01-22

Summary

An issue discovered in kodbox through 1.43 allows attackers to arbitrarily add Administrator accounts via crafted GET request.

Vulnerable Configurations

Part	Description	Count
Application	Kodcloud Kodcloud Kodbox 1.02 Kodcloud Kodbox 1.03 Kodcloud Kodbox 1.04 Kodcloud Kodbox 1.05 Kodcloud Kodbox 1.06 Kodcloud Kodbox 1.07 Kodcloud Kodbox 1.08 Kodcloud Kodbox 1.09 Kodcloud Kodbox 1.10 Kodcloud Kodbox 1.11 Kodcloud Kodbox 1.12 Kodcloud Kodbox 1.13 Kodcloud Kodbox 1.14 Kodcloud Kodbox 1.15 Kodcloud Kodbox 1.16 Kodcloud Kodbox 1.17 Kodcloud Kodbox 1.18 Kodcloud Kodbox 1.19 Kodcloud Kodbox 1.20 Kodcloud Kodbox 1.21 Kodcloud Kodbox 1.22 Kodcloud Kodbox 1.22.1 Kodcloud Kodbox 1.22.0806 Kodcloud Kodbox 1.22.0807 Kodcloud Kodbox 1.23 Kodcloud Kodbox 1.24 Kodcloud Kodbox 1.25 Kodcloud Kodbox 1.25.1123 Kodcloud Kodbox 1.25.1124 Kodcloud Kodbox 1.26 Kodcloud Kodbox 1.26.1 Kodcloud Kodbox 1.26.03 Kodcloud Kodbox 1.26.04 Kodcloud Kodbox 1.26.05 Kodcloud Kodbox 1.27 Kodcloud Kodbox 1.27.1 Kodcloud Kodbox 1.27.2 Kodcloud Kodbox 1.27.3 Kodcloud Kodbox 1.27.5 Kodcloud Kodbox 1.27.06 Kodcloud Kodbox 1.28 Kodcloud Kodbox 1.28.01 Kodcloud Kodbox 1.29 Kodcloud Kodbox 1.29.01 Kodcloud Kodbox 1.29.02 Kodcloud Kodbox 1.30 Kodcloud Kodbox 1.30.02 Kodcloud Kodbox 1.30.03 Kodcloud Kodbox 1.30.4 Kodcloud Kodbox 1.31 Kodcloud Kodbox 1.31.01 Kodcloud Kodbox 1.31.01.1 Kodcloud Kodbox 1.31.02 Kodcloud Kodbox 1.31.02.1 Kodcloud Kodbox 1.32 Kodcloud Kodbox 1.32.01 Kodcloud Kodbox 1.32.02 Kodcloud Kodbox 1.32.3 Kodcloud Kodbox 1.32.04 Kodcloud Kodbox 1.32.05 Kodcloud Kodbox 1.32.06 Kodcloud Kodbox 1.32.051 Kodcloud Kodbox 1.33 Kodcloud Kodbox 1.33.01 Kodcloud Kodbox 1.34 Kodcloud Kodbox 1.34.01 Kodcloud Kodbox 1.34.03 Kodcloud Kodbox 1.34.04 Kodcloud Kodbox 1.34.031 Kodcloud Kodbox 1.35 Kodcloud Kodbox 1.35.01 Kodcloud Kodbox 1.35.02 Kodcloud Kodbox 1.35.03 Kodcloud Kodbox 1.35.04 Kodcloud Kodbox 1.35.05 Kodcloud Kodbox 1.35.031 Kodcloud Kodbox 1.36 Kodcloud Kodbox 1.36.03 Kodcloud Kodbox 1.36.04 Kodcloud Kodbox 1.36.031 Kodcloud Kodbox 1.37 Kodcloud Kodbox 1.37.02 Kodcloud Kodbox 1.37.03 Kodcloud Kodbox 1.38 Kodcloud Kodbox 1.38.01 Kodcloud Kodbox 1.38.02 Kodcloud Kodbox 1.38.04 Kodcloud Kodbox 1.38.6 Kodcloud Kodbox 1.38.6.1 Kodcloud Kodbox 1.38.6.2 Kodcloud Kodbox 1.39 Kodcloud Kodbox 1.39.01 Kodcloud Kodbox 1.39.02 Kodcloud Kodbox 1.40 Kodcloud Kodbox 1.40.01 Kodcloud Kodbox 1.40.02 Kodcloud Kodbox 1.40.03 Kodcloud Kodbox 1.40.011 Kodcloud Kodbox 1.41 Kodcloud Kodbox 1.41.01 Kodcloud Kodbox 1.41.02 Kodcloud Kodbox 1.41.03 Kodcloud Kodbox 1.41.04 Kodcloud Kodbox 1.41.010 Kodcloud Kodbox 1.41.040 Kodcloud Kodbox 1.42 Kodcloud Kodbox 1.42.01 Kodcloud Kodbox 1.42.02	108

References

https://blog.mo60.cn/index.php/archives/kodbox_Logical.html