PatchSiren cyber security CVE debrief
CVE-2026-47238 MacWarrior CVE debrief
CVE-2026-47238 is a medium-severity vulnerability in ClipBucket v5 that allows authenticated users to edit video subtitles of other users due to a lack of authorization. This issue was patched in version 5.5.3 - #133.
- Vendor
- MacWarrior
- Product
- clipbucket-v5
- CVSS
- MEDIUM 6.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-06-11
- Original CVE updated
- 2026-06-13
- Advisory published
- 2026-06-11
- Advisory updated
- 2026-06-13
Who should care
Users of ClipBucket v5, administrators of ClipBucket v5 installations, and security teams monitoring for vulnerabilities in video sharing platforms.
Technical summary
ClipBucket v5, an open-source video sharing platform, is vulnerable to CVE-2026-47238. This medium-severity issue (CVSS Score: 6.5) allows a normal authenticated user to edit another user's video subtitles due to a lack of authorization. The vulnerability enables an attacker to upload subtitles, edit their name, or delete them. The issue was patched in version 5.5.3 - #133.
Defensive priority
Medium
Recommended defensive actions
- Update ClipBucket to version 5.5.3 - #133 or later.
- Review and restrict user permissions to prevent unauthorized subtitle editing.
- Monitor for suspicious activity related to video subtitle modifications.
Evidence notes
CVE-2026-47238 was published on [cvePublishedAt] and modified on [cveModifiedAt]. The vulnerability has a CVSS score of 6.5 and is classified as CWE-639 and CWE-863.
Official resources
-
CVE-2026-47238 CVE record
CVE.org
-
CVE-2026-47238 NVD detail
NVD
-
Source item URL
nvd_modified
- Source reference
CVE-2026-47238 was published on 2026-06-11T23:16:24.073Z and modified on 2026-06-13T04:17:32.580Z.