CVE-2023-45706
CVSS 3.1 Score 2.0 of 10 (low)
Details
Summary
CVE-2023-45706 is a newly identified vulnerability affecting WebReports' SAML configuration. An administrative user can exploit this issue through Cross Site Scripting (XSS) or Man in the Middle (MITM) attacks. By manipulating the SAML settings, an attacker can inject malicious code into a targeted user's browser or intercept and modify sensitive data transmitted between the user and the WebReports server. This vulnerability poses a significant risk to organizations using WebReports, potentially leading to unauthorized access, data theft, or other malicious activities. It is crucial that affected organizations apply the necessary patches or mitigations as soon as possible to protect their systems and users.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.