CVE-2023-4093

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Sep 19, 2023

Updated: Sep 21, 2023

CWE ID 89

Summary

CVE-2023-4093 is a Reflected and Persistent Cross-Site Scripting (XSS) vulnerability affecting Arconte Áurea in its 1.5.0.0 version. This issue enables attackers to inject malicious JavaScript code into webpages viewed by other users. Consequentially, an attacker could manipulate the victim's browser, execute unintended actions, or steal sensitive information. The exploitation of this vulnerability could also lead to the redirection of users to malicious websites. This weakness poses a serious threat to users' privacy and security.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sbNNam
https://www.cve.org/CVERecord?id=CVE-2023-4093
https://nvd.nist.gov/vuln/detail/CVE-2023-4093

Back to Vulnerability Database

CVE-2023-4093

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations