CVE-2023-51748

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Jan 11, 2024

Updated: Jan 18, 2024

Summary

CVE-2023-51748 is a vulnerability affecting ScaleFusion version 10.5.2. The issue lies in the insufficient limitation of user actions, which permits the use of Ctrl-O and Ctrl-S keys to bypass the Edge application. This security flaw can be exploited to launch file explorers in Agent-based Multi-App and Single App Kiosk modes. The vulnerability is mitigated in version 10.5.7 with the implementation of measures to prevent the launching of file explorers, thereby restricting unauthorized user actions.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/t5NxK2
https://www.cve.org/CVERecord?id=CVE-2023-51748
https://nvd.nist.gov/vuln/detail/CVE-2023-51748

Back to Vulnerability Database

CVE-2023-51748

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations