CVE-2023-51727
CVSS 3.1 Score 5.4 of 10 (medium)
Details
Summary
CVE-2023-51727 is a vulnerability that affects Skyworth Router CM5100, version 4.1.1.24. The vulnerability arises from insufficient validation of user-supplied input for the SMTP Username parameter on its web interface. An attacker can exploit this vulnerability by providing specially crafted input to the parameter at the web interface of the targeted system. Successful exploitation could lead to stored cross-site scripting (XSS) attacks on the targeted system. The vulnerability has a base severity of MEDIUM, with a base score of 5.4 according to [email protected]. Organizations using this router should update to a patched version to mitigate this vulnerability and prevent potential attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions