CVE-2023-37521

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Jan 16, 2024

Updated: Jan 23, 2024

Summary

CVE-2023-37521 is a vulnerability affecting HCL BigFix Bare OSD Metal Server WebUI versions 311.19 and below. The issue lies in the exposure of sensitive information in a query string. An attacker can potentially exploit this vulnerability by manipulating the query string to execute malicious attacks. This could lead to unauthorized access or data breaches. It is strongly recommended that users of the affected version upgrade to the latest patch to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r5h16R
https://www.cve.org/CVERecord?id=CVE-2023-37521
https://nvd.nist.gov/vuln/detail/CVE-2023-37521

Back to Vulnerability Database

CVE-2023-37521

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations