CVE-2023-45706

CVSS 3.1 Score 2.0 of 10 (low)

Details

Published Mar 28, 2024

Summary

CVE-2023-45706 is a newly identified vulnerability affecting WebReports' SAML configuration. An administrative user can exploit this issue through Cross Site Scripting (XSS) or Man in the Middle (MITM) attacks. By manipulating the SAML settings, an attacker can inject malicious code into a targeted user's browser or intercept and modify sensitive data transmitted between the user and the WebReports server. This vulnerability poses a significant risk to organizations using WebReports, potentially leading to unauthorized access, data theft, or other malicious activities. It is crucial that affected organizations apply the necessary patches or mitigations as soon as possible to protect their systems and users.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share