CVE-2023-37533

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Nov 9, 2023

Updated: Nov 16, 2023

CWE ID 79

Summary

CVE-2023-37533: HCL Connections is susceptible to reflected cross-site scripting (XSS) attacks. An attacker can inject malicious code into a vulnerable URL, causing the victim's browser to execute this code upon visit. Potentially stolen authentication credentials could lead to compromised user accounts, paving the way for further attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

HCL Technologies Ltd.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r5h16m
https://www.cve.org/CVERecord?id=CVE-2023-37533
https://nvd.nist.gov/vuln/detail/CVE-2023-37533

Back to Vulnerability Database

CVE-2023-37533

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations