CVE-2023-3393

CVSS 3.1 Score 9.1 of 10 (high)

Details

Published Jun 23, 2023
Updated: Jun 30, 2023
CWE ID 444

Summary

CVE-2023-3393 denotes a code injection vulnerability that affected the fossbilling GitHub repository before version 0.5.1. Hackers could exploit this vulnerability by injecting malicious code into input fields, potentially leading to unauthorized access, data theft, or system compromises. Exploitation required user interaction, making it a significant threat to organizations that rely on this software. Users are strongly advised to upgrade to the patched version as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Apache Software Foundation Traffic Server
  • Apache Traffic Server

Affected Vendors

  • Apache Software Foundation