CVE-2023-47370

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 9, 2023

Updated: Nov 20, 2023

CWE ID 326

Summary

CVE-2023-47370 is a vulnerability affecting bluetrick Line 13.6.1, where an access token is inadvertently leaked during the transmission of notifications. This issue grants remote attackers the ability to send malicious notifications to victims, potentially resulting in unauthorized access or data breaches. The vulnerability could lead to serious consequences, including privacy violations or even financial loss. Users are advised to update their systems as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Linecorp

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tSo_H9
https://www.cve.org/CVERecord?id=CVE-2023-47370
https://nvd.nist.gov/vuln/detail/CVE-2023-47370

Back to Vulnerability Database

CVE-2023-47370

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations