CVE-2023-3393
CVSS 3.1 Score 9.1 of 10 (high)
Details
Published Jun 23, 2023
Updated: Jun 30, 2023
CWE ID 444
Summary
CVE-2023-3393 denotes a code injection vulnerability that affected the fossbilling GitHub repository before version 0.5.1. Hackers could exploit this vulnerability by injecting malicious code into input fields, potentially leading to unauthorized access, data theft, or system compromises. Exploitation required user interaction, making it a significant threat to organizations that rely on this software. Users are strongly advised to upgrade to the patched version as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Apache Software Foundation Traffic Server
- Apache Traffic Server
Affected Vendors
- Apache Software Foundation