CVE-2023-45560

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Nov 14, 2023

Updated: Nov 17, 2023

Summary

CVE-2023-45560 is a vulnerability affecting Yasukawa memberscard version 13.6.1. This issue grants attackers the ability to send malicious notifications, exploiting the leakage of the channel access token. An attacker could potentially use this vulnerability to distribute harmful content or gain unauthorized access to user information. The exact method of exploitation is yet to be determined, but users are strongly advised to update their software to the latest version as a preventative measure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/s8JM3n
https://www.cve.org/CVERecord?id=CVE-2023-45560
https://nvd.nist.gov/vuln/detail/CVE-2023-45560

Back to Vulnerability Database

CVE-2023-45560

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations