CVE-2023-48250

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 10, 2024
Updated: Jan 17, 2024
CWE ID 798

Summary

CVE-2023-48250 is a newly disclosed cybersecurity vulnerability that enables unauthorized access to a web application. Attackers can exploit this issue by authenticating to the system using hidden, hard-coded accounts with high privileges. These accounts are not intended to be publicly known or accessible, making this a significant security concern. Successful exploitation of this vulnerability could allow an attacker to gain unrestricted access to sensitive data or even take control of the affected system. Organizations using the vulnerable web application are advised to apply the necessary patches as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share