First published: Tue Aug 29 2023(Updated: )
A Stored Cross-Site Scripting (XSS) vulnerability in the SSH configuration tab in Usermin 2.001 allows remote attackers to inject arbitrary web script or HTML via options for the host value while editing the host options.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Webmin Usermin | =2.001 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2023-41153 is medium with a CVSS score of 5.4.
CVE-2023-41153 affects Usermin 2.001.
The Common Vulnerabilities and Exposures (CVE) ID for this vulnerability is CVE-2023-41153.
Remote attackers can exploit CVE-2023-41153 by injecting arbitrary web script or HTML via options for the host value while editing the host options in the SSH configuration tab in Usermin 2.001.
At the moment, there are no specific patches or fixes available for CVE-2023-41153. It is recommended to update to a version of Usermin that includes a fix once it becomes available.