CVE-2023-38843

CVSS 3.1 Score 8.0 of 10 (high)

Details

Published Aug 17, 2023
Updated: Aug 23, 2023
CWE ID 1236

Summary

CVE-2023-38843 is a vulnerability affecting Atlos version 1.0. An attacker with valid credentials can exploit this issue by crafting a malicious description field in the incident function. As a result, they can execute arbitrary code, potentially leading to significant security risks and system compromise. This vulnerability highlights the importance of input validation and access control mechanisms to prevent unauthorized code execution.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share