CVE-2023-4528

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Sep 7, 2023
Updated: Sep 13, 2023

Summary

CVE-2023-4528 is a deserialization vulnerability affecting JSCAPE MFT Server versions before 2023.1.9. This issue, present on Windows, Linux, and MacOS systems, enables attackers to execute arbitrary Java code and even OS commands through the management interface, posing a significant risk to security. By exploiting this vulnerability, malicious actors can gain unauthorized access and potentially cause damage to the affected system. It is highly recommended that users upgrade to the latest version of JSCAPE MFT Server to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share