CVE-2023-3579

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jul 10, 2023

Updated: May 17, 2024

CWE ID 191

Summary

CVE-2023-3579 is a newly disclosed vulnerability affecting HadSky version 7.11.8. This issue is classified as problematic and involves the User Handler component's unknown functionality. The manipulation results in a cross-site request forgery, allowing an attacker to launch unauthorized requests on behalf of users. The exploit has been made public, increasing the risk of remote attacks. Though the exact extent of impacted users is unknown, it is essential to apply necessary patches as soon as possible to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rqo7Do
https://www.cve.org/CVERecord?id=CVE-2023-3579
https://nvd.nist.gov/vuln/detail/CVE-2023-3579

Back to Vulnerability Database

CVE-2023-3579

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations