CVE-2023-45727
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Oct 18, 2023
Updated: Oct 25, 2023
CWE ID 611
Summary
CVE-2023-45727 is a vulnerability affecting Proself Enterprise/Standard Edition Ver5.62 and earlier, Proself Gateway Edition Ver1.65 and earlier, and Proself Mail Sanitize Edition Ver1.08 and earlier. This issue enables remote, unauthenticated attackers to execute XML External Entity (XXE) attacks. By sending malformed XML data, the attacker can force the affected software to read arbitrary files on the server, potentially gaining access to sensitive account information. This vulnerability poses a significant risk and requires immediate mitigation efforts.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- North Grid Corporation