CVE-2023-38040: XSS
First published: Sun Sep 17 2023(Updated: )
A reflected XSS vulnerability exists in Revive Adserver 5.4.1 and earlier versions..
Credit: support@hackerone.com support@hackerone.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Revive-adserver Revive Adserver | <=5.4.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2023-38040.
What is the severity of CVE-2023-38040?
The severity of CVE-2023-38040 is medium with a CVSS score of 6.1.
What is the affected software for CVE-2023-38040?
The affected software for CVE-2023-38040 is Revive Adserver 5.4.1 and earlier versions.
What is the Common Weakness Enumeration (CWE) ID associated with CVE-2023-38040?
The Common Weakness Enumeration (CWE) ID associated with CVE-2023-38040 is CWE-79.
How can I fix the reflected XSS vulnerability in Revive Adserver 5.4.1 and earlier versions?
To fix the reflected XSS vulnerability, it is recommended to upgrade to a version of Revive Adserver that is not affected by the vulnerability.
- collector/nvd-api
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/event
- agent/type
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/revive-adserver
- canonical/revive-adserver revive adserver
- version/revive-adserver revive adserver/5.4.1