CVE-2023-3971

CVSS 3.1 Score 7.3 of 10 (high)

Details

Published Oct 4, 2023
Updated: Nov 7, 2023
CWE ID 79
CWE ID 80

Summary

CVE-2023-3971 is an HTML injection vulnerability found in the Controller user interface settings. This flaw affects various products. An attacker can exploit this vulnerability to inject HTML and create a custom login page, which can lead to the capture of credentials and a complete compromise of the system. The risk score is 27, indicating a high severity level. The base severity is also rated as high, with a base score of 7.3. Remediation for this vulnerability is not specified in the provided information.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-3971 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options