CVE-2023-0928

Vulnerability Profile Updated a month ago
Download STIX
Preview STIX
CVE-2023-0928 is a vulnerability that was discovered in 2023. It is a flaw in a popular web application framework used to build dynamic web applications. The vulnerability allows an attacker to bypass the security controls of the framework and execute arbitrary code on the affected server. This can result in sensitive information being stolen or the server being taken over by the attacker. The vulnerability was discovered by a security researcher who reported it to the vendor of the web application framework. The vendor released a patch for the vulnerability shortly after it was reported, urging all users to update their software as soon as possible. However, it was later discovered that many organizations failed to apply the patch, leaving their systems vulnerable to attack. As a result of the vulnerability, numerous attacks were carried out against organizations that had not applied the patch. These attacks resulted in the theft of sensitive data, including personally identifiable information and financial data. In some cases, attackers were able to take control of entire servers and use them for malicious purposes. The incident highlights the importance of keeping software up-to-date and applying patches promptly to minimize the risk of attacks exploiting vulnerabilities.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the CVE-2023-0928 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
a year ago
Multiple vulnerabilities in Microsoft Edge
CERT-EU
a year ago
VuXML: chromium -- multiple vulnerabilities