CVE-2023-4980

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Sep 15, 2023
Updated: Sep 20, 2023
CWE ID 79

Summary

CVE-2023-4980 is a Cross-site Scripting (XSS) vulnerability affecting the librenms/librenms GitHub repository before version 23.9.0. An attacker can exploit this issue by injecting malicious scripts into a web page viewed by other users, potentially stealing sensitive information or taking control of their browsing sessions. Successful exploitation requires the attacker to manipulate input fields in a specific way, making it crucial for users to update their systems as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share