CVE-2023-41170

Summary

CVE-2023-41170 is a newly disclosed vulnerability affecting NetScout's nGeniusONE 6.3.4 build 2298. This issue permits an attacker to inject malicious scripts into a user's browser through a reflected cross-site scripting (XSS) attack. Successful exploitation could lead to unauthorized session hijacking, data theft, or other malicious activities. Users are urged to apply the available patches as soon as possible to mitigate this risk. The vulnerability could be exploited by sending a specially crafted link to the target, leading to potential security implications if the link is clicked.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.