CVE-2023-5862

Name: CVE-2023-5862
Creator: NVD / NIST
Published: 2023-10-31T01:15:07.697+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

LOWCVSS 3.3/10EPSS 0.25%

Last modified Jun 17, 2026

CVE-2023-5862 is a low-severity vulnerability rated 3.3/10 on the CVSS scale. Missing Authorization in GitHub repository hamza417/inure prior to Build95.. EPSS estimates a 0.25% chance of exploitation in the next 30 days.

Description

Missing Authorization in GitHub repository hamza417/inure prior to Build95.

Metrics

CVSS 3.1

3.3/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

EPSS Probability

0.25%

16.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-862

Affected Software

Vendor	Product	Versions
Hamza417	Inure	build44
Hamza417	Inure	build45
Hamza417	Inure	build46
Hamza417	Inure	build47
Hamza417	Inure	build48
Hamza417	Inure	build49
Hamza417	Inure	build51
Hamza417	Inure	build52
Hamza417	Inure	build53
Hamza417	Inure	build55
Hamza417	Inure	build56
Hamza417	Inure	build57
Hamza417	Inure	build58
Hamza417	Inure	build59
Hamza417	Inure	build60
Hamza417	Inure	build61
Hamza417	Inure	build62
Hamza417	Inure	build63
Hamza417	Inure	build64
Hamza417	Inure	build65
Hamza417	Inure	build66
Hamza417	Inure	build67
Hamza417	Inure	build68
Hamza417	Inure	build69
Hamza417	Inure	build70
Hamza417	Inure	build71
Hamza417	Inure	build72
Hamza417	Inure	build73
Hamza417	Inure	build74
Hamza417	Inure	build75
Hamza417	Inure	build76
Hamza417	Inure	build77
Hamza417	Inure	build78
Hamza417	Inure	build79
Hamza417	Inure	build80
Hamza417	Inure	build83
Hamza417	Inure	build85
Hamza417	Inure	build86
Hamza417	Inure	build87
Hamza417	Inure	build88
Hamza417	Inure	build89
Hamza417	Inure	build92
Hamza417	Inure	build94

References

https://github.com/hamza417/inure/commit/52b8c0bae36f129a5be05e377d7391afc3629df6Patch
https://huntr.com/bounties/0e517db6-d8ba-4cb9-9339-7991dda52e6dExploit, Patch, Third Party Advisory
https://github.com/hamza417/inure/commit/52b8c0bae36f129a5be05e377d7391afc3629df6Patch
https://huntr.com/bounties/0e517db6-d8ba-4cb9-9339-7991dda52e6dExploit, Patch, Third Party Advisory

Timeline

Published: Oct 31, 2023
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2023-5862?

Missing Authorization in GitHub repository hamza417/inure prior to Build95.

How severe is CVE-2023-5862?

CVE-2023-5862 has a CVSS score of 3.3/10 (LOW severity). The EPSS model estimates a 0.25% probability of exploitation in the next 30 days.

How do I fix CVE-2023-5862?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2023-5862?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST