CVE-2023-35792
CVSS 3.1 Score 6.1 of 10 (medium)
Details
Published Jul 31, 2023
Updated: Aug 4, 2023
CWE ID 79
Summary
CVE-2023-35792 is a stored Cross-site Scripting (XSS) vulnerability affecting Vound Intella Connect version 2.6.0.3. An attacker can inject and execute malicious scripts in a user's browser by inserting specially crafted data into the application. This can lead to unauthorized access, data theft, or other malicious activities. Users are encouraged to update to the latest version of Vound Intella Connect to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share