CVE-2023-32969
CVSS 3.1 Score 4.9 of 10 (medium)
Details
Summary
CVE-2023-32969: A newly discovered cross-site scripting (XSS) vulnerability affects Network & Virtual Switch. This issue permits authenticated administrators to inject malicious code via a network. The vulnerability has been addressed in QuTScloud version 5.1.5.2651 and later, QTS 5.1.4.2596 build 20231128 and later, and QuTS hero h5.1.4.2596 build 20231128 and later. By exploiting this XSS vulnerability, attackers could execute malicious scripts on unsuspecting users' browsers, leading to potential data theft or system takeover. This could pose a significant threat to organizations that rely on Network & Virtual Switch for managing their networks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.