CVE-2023-33515

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Jun 14, 2023
Updated: Nov 7, 2023
CWE ID 79

Summary

CVE-2023-33515 is a newly identified vulnerability affecting the SoftExpert Excellence Suite version 2.1.9. Hackers can exploit this Cross Site Scripting (XSS) weakness to inject malicious scripts into the query screens of the application, potentially stealing sensitive user data or gaining unauthorized access. Successful attacks may lead to significant security risks and potential financial losses for the affected organizations. It is strongly recommended that users of SoftExpert Excellence Suite 2.1.9 update to the latest version as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share