CVE-2023-37229

Summary

CVE-2023-37229 identifies a Server Side Request Forgery (SSRF) vulnerability in Loftware Spectrum prior to version 5.1. This flaw affects the product "ygwDok" and has been rated with a high severity score of 8.8, indicating significant potential impacts on confidentiality, integrity, and availability. The vulnerability requires no special privileges to exploit but does demand user interaction, making it relatively accessible to attackers over the network. Organizations using affected versions are advised to upgrade to version 5.1 or later as a remediation measure to mitigate risks associated with this vulnerability. If left unaddressed, this flaw could lead to unauthorized access and manipulation of sensitive data within an organization's systems.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.