CVE-2023-51371

CVSS 3.1 Score 4.8 of 10 (medium)

Details

Published Dec 29, 2023
Updated: Jan 5, 2024
CWE ID 79

Summary

CVE-2023-51371 is a Cross-Site Scripting (XSS) vulnerability affecting the Bit Assist Chat Widget. Affected chat applications include WhatsApp Chat, Facebook Messenger Chat, Telegram Chat Bubble, Line Messenger, Live Chat Support Chat Button, WeChat, SMS, Call Button, and Customer Support Button with floating Chat Widget. The flaw, located in the web page generation process, enables an attacker to inject malicious scripts into a victim's browser, potentially stealing sensitive data or taking control of their account, impacting versions from n/a to 1.1.9.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share