CVE-2023-5987
CVSS 3.1 Score 6.1 of 10 (medium)
Details
Published Nov 15, 2023
Updated: Nov 30, 2023
CWE ID 79
Summary
CVE-2023-5987 is a Cross-Site Scripting (XSS) vulnerability identified with a CWE-79 rating. This issue permits attackers to inject arbitrary JavaScript code into web pages, which can be executed in a victim's browser when they visit the affected page. If exploited, this vulnerability could lead to data theft, session hijacking, or other malicious activities. By neutralizing the input during web page generation, this risk can be mitigated and the vulnerability effectively addressed.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Schneider Electric SE