CVE-2023-51722

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Jan 17, 2024
Updated: Jan 19, 2024
CWE ID 79

Summary

CVE-2023-51722 is a vulnerability affecting Skyworth Router CM5100, specifically version 4.1.1.24. This issue arises due to insufficient input validation for the Time Server 3 parameter at the web interface. A remote adversary can manipulate this vulnerability by providing maliciously crafted input to the web interface, leading to stored XSS attacks. These attacks can potentially compromise the targeted system, jeopardizing its security and confidentiality.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share