CVE-2023-38536

CVSS 3.1 Score 6.4 of 10 (medium)

Details

Published Mar 13, 2024
Updated: Mar 14, 2024
CWE ID 79

Summary

CVE-2023-38536 is a critical HTML injection vulnerability affecting OpenText™ Exceed Turbo X version 12.5.1. An attacker could exploit this vulnerability to inject malicious scripts into HTML documents, potentially leading to Cross-Site Scripting (XSS) attacks. The successful execution of such an attack could result in unauthorized access to user data or other malicious actions. This weakness in OpenText™ Exceed Turbo X poses a significant risk to organizations that use this software and should be addressed promptly through software updates or other mitigation measures.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share