CVE-2023-34565

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Jun 14, 2023

Updated: Feb 2, 2024

CWE ID 79

Summary

CVE-2023-34565 is a newly identified vulnerability affecting Netbox version 3.5.1. This issue allows an attacker to inject malicious scripts into the "Create Wireless LAN Groups" function through Cross-Site Scripting (XSS), potentially leading to unauthorized access or data theft for unsuspecting users. An attacker can exploit this vulnerability by crafting a specially crafted input in the affected function. To mitigate the risk, users are advised to upgrade to the latest version of Netbox or implement appropriate XSS protection measures.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rpFIZn
https://www.cve.org/CVERecord?id=CVE-2023-34565
https://nvd.nist.gov/vuln/detail/CVE-2023-34565

Back to Vulnerability Database

CVE-2023-34565

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations