CVE-2023-50349
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Feb 9, 2024
Updated: Feb 16, 2024
CWE ID 352
Summary
CVE-2023-50349 is a Cross Site Request Forgery (CSRF) vulnerability affecting IBM Sametime. Malicious actors can exploit this issue by making unauthorized requests to the Sametime Proxy application's REST APIs, potentially leading to harmful actions such as account takeover, data modification, or unintended application behavior. This security flaw poses a significant risk to organizations using Sametime and emphasizes the importance of timely patches and robust security measures to mitigate CSRF vulnerabilities.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- HCL Technologies Ltd.