CVE-2023-4892

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Sep 25, 2023

Updated: Sep 26, 2023

CWE ID 384

Summary

CVE-2023-4892 introduces a critical vulnerability in Teedy v1.11's text editor. An attacker can manipulate HTML tags in this editor, enabling the execution of malicious JavaScript in the web application. This issue could lead to serious security risks, including unauthorized access or data theft. Users are strongly advised to upgrade to the latest version of Teedy to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Franklin Electric Company Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tfEUCT
https://www.cve.org/CVERecord?id=CVE-2023-4892
https://nvd.nist.gov/vuln/detail/CVE-2023-4892

Back to Vulnerability Database

CVE-2023-4892

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations