CVE-2023-41178

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Jan 23, 2024

Updated: Jan 29, 2024

CWE ID 79

Summary

CVE-2023-41178 refers to a reflected cross-site scripting (XSS) vulnerability in Trend Micro Mobile Security (Enterprise). This issue allows an attacker to exploit an authenticated victim by providing them with a malicious link. Successful exploitation could result in the execution of malicious scripts in the victim's web browser, potentially leading to data theft or unauthorized access. This vulnerability is similar to CVE-2023-41176 but involves a slightly different attack vector.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Trend Micro Deep Security

Affected Vendors

Trend Micro, Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/scfmmX
https://www.cve.org/CVERecord?id=CVE-2023-41178
https://nvd.nist.gov/vuln/detail/CVE-2023-41178

Back to Vulnerability Database