CVE-2023-49216

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Nov 23, 2023
Updated: Nov 30, 2023
CWE ID 79

Summary

CVE-2023-49216 is a vulnerability affecting Usedesk before version 1.7.57. This issue permits XSS attacks through profile data, allowing malicious actors to inject malicious scripts into a user's browser, potentially leading to unauthorized data access or account takeover. Users are advised to update their Usedesk installation to the latest version to mitigate this risk. Unpatched systems remain vulnerable to these attacks, which can result in serious security consequences. In summary, the CVE-2023-49216 vulnerability exposes Usedesk users to XSS attacks through profile data. Attackers can exploit this flaw to inject malicious code and gain unauthorized access to data or even take over user accounts. It is crucial that users update their Usedesk installations to the latest version to eliminate this risk. Failure to address this vulnerability may result in severe security repercussions.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share