CVE-2023-50303

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Feb 28, 2024

CWE ID 79

Summary

CVE-2023-50303 is a cross-site scripting (XSS) vulnerability affecting IBM InfoSphere Information Server 11.7. This issue allows users to inject malicious JavaScript code into the Web UI, altering intended functionality and potentially disclosing credentials within trusted sessions. IBM's X-Force has assigned ID 273333 to this vulnerability. By exploiting this weakness, an attacker can execute unauthorized actions, posing a serious security risk. Users are strongly advised to apply the available patch as soon as possible to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tt4F39
https://www.cve.org/CVERecord?id=CVE-2023-50303
https://nvd.nist.gov/vuln/detail/CVE-2023-50303

Back to Vulnerability Database

CVE-2023-50303

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations