CVE-2023-45317

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Oct 26, 2023

Updated: Nov 7, 2023

CWE ID 352

Summary

CVE-2023-45317 is a cybersecurity vulnerability affecting an application interface. Maliciously crafted HTTP requests can bypass validity checks, allowing unauthorized actions with administrative privileges if a user visits a malicious website. This issue poses a significant risk for unintended administrative actions, potentially leading to data breaches or system compromises. Users are advised to update their applications as soon as a patch becomes available to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tIwOFz
https://www.cve.org/CVERecord?id=CVE-2023-45317
https://nvd.nist.gov/vuln/detail/CVE-2023-45317

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners

CVE-2023-45317

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations