CVE-2023-45203
CVSS 3.1 Score 6.1 of 10 (medium)
Details
Summary
CVE-2023-45203 is a vulnerability found in the Online Examination System v1.0. The vulnerability involves multiple Open Redirect vulnerabilities, specifically in the 'q' parameter of the login.php resource. Exploiting this vulnerability allows an attacker to redirect a victim user to any website by using a crafted URL. The risk score for this vulnerability is 26, and it has a base severity of MEDIUM with a base score of 6.1 according to CVSS:3.1. The impact of this vulnerability is rated as LOW for both integrity and confidentiality, with no availability impact. Remediation measures should include addressing the code vulnerabilities that allow unauthorized redirection and implementing input validation checks to prevent malicious redirection attempts. This vulnerability poses potential danger to organizations using the affected Online Examination System v1.0, as it can lead to phishing attacks or unauthorized access to sensitive information through redirection to malicious websites.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions