CVE-2023-40829

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 12, 2023
Updated: Oct 24, 2023
CWE ID 863

Summary

CVE-2023-40829 represents a significant vulnerability in the Tencent Enterprise Wechat Privatization 2.5.x and 2.6.930000 versions. This issue permits unauthorized access to interfaces behind the platform, potentially enabling attackers to gain sensitive information or execute unintended actions. The exact implications of this vulnerability are still being evaluated, but it poses a serious risk to organizations using the affected versions of Tencent Enterprise Wechat Privatization. Organizations are strongly encouraged to apply the necessary patches or upgrades to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share