CVE-2023-23548

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Aug 1, 2023
Updated: Aug 4, 2023
CWE ID 79
CWE ID 80

Summary

CVE-2023-23548 is a vulnerability categorized as Reflected XSS in business intelligence in Checkmk versions less than 2.2.0p8, 2.1.0p32, 2.0.0p38, and 1.6.0p30. The affected products include various versions of Checkmk and related components. This vulnerability can be remediated by updating the affected software to a version that is equal to or higher than the mentioned patch levels. The potential danger posed by this vulnerability is that it allows attackers to execute arbitrary scripts in the victim's browser, potentially leading to unauthorized access, data theft, or other malicious actions within an organization's business intelligence environment.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-23548 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options