How severe is CVE-2023-43052?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.3 out of 10.

What type of vulnerability is CVE-2023-43052?

This is classified as CWE-435, which is a common weakness in software security.

CVE-2023-43052

MEDIUM Year: 2023

CVSS v3 Score

5.3

Medium

Weakness Type

CWE-435

View all →

Vulnerability Description

IBM Control Center 6.2.1 through 6.3.1 is vulnerable to an external service interaction attack, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability to induce the application to perform server-side DNS lookups or HTTP requests to arbitrary domain names. By submitting suitable payloads, an attacker can cause the application server to attack other systems that it can interact with.

CVE-2020-5255

MEDIUM

CVSS:4.3(Medium)

In Symfony before versions 4.4.7 and 5.0.7, when a `Response` does not contain a `Content-Type` header, affected versions of Symfony can fallback to the format defined in the `Accept` header of the re...

CWE-4352020

CVE-2021-34699

HIGH

CVSS:7.7(High)

A vulnerability in the TrustSec CLI parser of Cisco IOS and Cisco IOS XE Software could allow an authenticated, remote attacker to cause an affected device to reload. This vulnerability is due to an i...

CWE-4352021

CVE-2020-5255

MEDIUM

CVSS:4.3(Medium)

CWE-4352020

CVE-2023-43052

Vulnerability Description

Related Vulnerabilities

CVE-2020-5255

CVE-2021-34699

CVE-2020-5255