CVE-2023-38536

CVSS 3.1 Score 6.4 of 10 (medium)

Details

Published Mar 13, 2024

Updated: Mar 14, 2024

CWE ID 79

Summary

CVE-2023-38536 is a critical HTML injection vulnerability affecting OpenText™ Exceed Turbo X version 12.5.1. An attacker could exploit this vulnerability to inject malicious scripts into HTML documents, potentially leading to Cross-Site Scripting (XSS) attacks. The successful execution of such an attack could result in unauthorized access to user data or other malicious actions. This weakness in OpenText™ Exceed Turbo X poses a significant risk to organizations that use this software and should be addressed promptly through software updates or other mitigation measures.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sDKNA-
https://www.cve.org/CVERecord?id=CVE-2023-38536
https://nvd.nist.gov/vuln/detail/CVE-2023-38536

Back to Vulnerability Database

CVE-2023-38536

CVSS 3.1 Score 6.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations