CVE-2023-5391

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 4, 2023

Updated: Feb 1, 2024

CWE ID 502

Summary

CVE-2023-5391 is a deserialization vulnerability identified with a Common Vulnerabilities and Exposures (CVE) ID. This issue, classified as CWE-502, enables an attacker to execute arbitrary code on a targeted system. The threat actor can exploit this vulnerability by sending a specially crafted packet to the application, allowing them to deserialize untrusted data and potentially gain control over the affected system. This vulnerability poses a significant risk to system security and requires immediate attention and patching to mitigate potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Schneider Electric SE

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s4wr7R
https://www.cve.org/CVERecord?id=CVE-2023-5391
https://nvd.nist.gov/vuln/detail/CVE-2023-5391

Back to Vulnerability Database

CVE-2023-5391

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations