CVE-2023-5463

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Oct 9, 2023

Updated: May 17, 2024

CWE ID 427

Summary

CVE-2023-5463 is a newly disclosed critical vulnerability affecting XINJE XDPPro up to version 3.7.17a. This issue lies in the library cfgmgr32.dll and allows for an uncontrolled search path, giving attackers the ability to manipulate some unknown functionality locally. Although the exact impact and exploit details have been made public, no response has been received from the vendor regarding this disclosure, and no mitigation measures have been provided.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

XINJE

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s8ZVY4
https://www.cve.org/CVERecord?id=CVE-2023-5463
https://nvd.nist.gov/vuln/detail/CVE-2023-5463

Back to Vulnerability Database

CVE-2023-5463

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations