CVSS 3.1 Score 7.1 of 10 (high)


Published Oct 18, 2023
Updated: Oct 25, 2023


CVE-2023-45062 is a vulnerability found in the Thomas Scholl canvasio3D Light plugin versions <= 2.4.6, which is affected by an Unauthorized Reflected Cross-Site Scripting (XSS) issue. This vulnerability has a high base severity rating of 7.1 and can be exploited over a network without requiring any privileges. It poses a potential danger to organizations as it allows attackers to inject malicious scripts into web pages viewed by users, potentially leading to unauthorized access, data theft, or other malicious activities. The vulnerability affects a range of products, including tIgB1L, tIgB1K, tIgB1J, and many others. To remediate the vulnerability, organizations should update the affected plugin to a version that includes the necessary security patches or consider disabling or removing the plugin entirely from their systems.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-45062 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options