CVE-2023-3834

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jul 22, 2023

Updated: May 17, 2024

Summary

CVE-2023-3834 is a newly identified vulnerability affecting Bug Finder EX-RATE 1.0. This issue, rated as problematic, impacts an unknown functionality of the Ticket Handler component within the file /user/ticket/create. Manipulation of the message argument triggers cross-site scripting (XSS), enabling remote attacks. The vulnerability identification number is VDB-235160. Regrettably, despite early notification, the vendor has yet to respond.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Ivanti Endpoint Manager

Affected Vendors

Ivanti Software Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r_ySRL
https://www.cve.org/CVERecord?id=CVE-2023-3834
https://nvd.nist.gov/vuln/detail/CVE-2023-3834

Back to Vulnerability Database