CVE-2023-51630

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Feb 8, 2024

Updated: Feb 15, 2024

CWE ID 79

Summary

CVE-2023-51630 is a Cross-Site Scripting (XSS) vulnerability affecting Paessler PRTG Network Monitor. This issue enables remote attackers to bypass authentication on vulnerable installations, requiring user interaction for exploitation. The flaw lies within the web console, where improper validation of user-supplied data allows for the injection of arbitrary scripts. An attacker can exploit this vulnerability to bypass authentication on the system, similar to ZDI-CAN-21182.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

PRTG Network Monitor

Affected Vendors

Paessler AG

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/t34Bav
https://www.cve.org/CVERecord?id=CVE-2023-51630
https://nvd.nist.gov/vuln/detail/CVE-2023-51630

Back to Vulnerability Database