CVE-2023-33996

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Dec 13, 2024
CWE ID 862

Summary

CVE-2023-33996 is a Missing Authorization vulnerability affecting the Spam protection, AntiSpam, and FireWall solutions by CleanTalk, from versions n/a to 6.10. Attackers can exploit this issue by taking advantage of incorrectly configured access control security levels, potentially gaining unauthorized access and causing significant harm to the affected system. This vulnerability may result in data breaches, unauthorized system changes, or other malicious activities. It is crucial for users to update their CleanTalk solutions as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share