CVE-2023-51726

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Jan 17, 2024
Updated: Jan 19, 2024
CWE ID 79

Summary

CVE-2023-51726 is a vulnerability that affects the Skyworth Router CM5100, version 4.1.1.24. It is caused by insufficient validation of user input for the SMTP Server Name parameter on its web interface. This vulnerability can be exploited remotely by supplying specially crafted input to the targeted system's web interface. If successfully exploited, it could enable the attacker to carry out stored XSS attacks on the affected system. The vulnerability has a base severity rating of MEDIUM and a CVSS score of 5.4, with low impacts on integrity and confidentiality and no impact on availability. Remediation measures should involve updating to a patched version of the router firmware as soon as it becomes available.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-51726 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options