CVE-2023-3196

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Published Oct 3, 2023

Updated: Oct 5, 2023

CWE ID 79

Summary

CVE-2023-3196 is a newly disclosed vulnerability that poses a risk to login pages. An attacker can exploit this weakness by injecting a malicious JavaScript payload into the login footer and page description parameters within the administration panel. This could potentially lead to unauthorized access or data theft. Users are strongly advised to apply the necessary patches or updates to mitigate this threat and secure their login pages. Failure to address this vulnerability may result in serious security consequences.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ro56_D
https://www.cve.org/CVERecord?id=CVE-2023-3196
https://nvd.nist.gov/vuln/detail/CVE-2023-3196

Back to Vulnerability Database

CVE-2023-3196

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations