CVE-2023-47372

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 9, 2023

Updated: Nov 20, 2023

CWE ID 326

Summary

CVE-2023-47372 is a vulnerability affecting UPDATESALON C-LOUNGE Line 13.6.1. This issue involves the leakage of channel access tokens, which can be exploited by remote attackers. By sending malicious notifications, they can gain unauthorized access to victim's accounts or perform actions on their behalf. This vulnerability poses a significant risk, especially for organizations that use C-LOUNGE Line 13.6.1 for communication and collaboration. It is essential to apply patches or updates as soon as they become available to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Linecorp

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tSo_IB
https://www.cve.org/CVERecord?id=CVE-2023-47372
https://nvd.nist.gov/vuln/detail/CVE-2023-47372

Back to Vulnerability Database

CVE-2023-47372

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations