CVE-2023-44143

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Nov 30, 2023
Updated: Dec 6, 2023
CWE ID 79

Summary

CVE-2023-44143 is a Cross-site Scripting (XSS) vulnerability affecting Bamboo Mcr Bamboo Columns. The flaw, which permits Stored XSS attacks, occurs during the web page generation process. This issue exists in versions from n/a through 1.6.1, posing a significant risk for unintended script execution and potential data theft or manipulation. Attackers can inject malicious code into web pages viewed by other users, exploiting the vulnerability to gain unauthorized access or steal sensitive information. Users are advised to promptly update their Bamboo Mcr Bamboo Columns installation to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share