← back
CVE-2023-41642observed exploitation

CVE-2023-41642

40Vexday Risk Score

Patch now. It exploitation observed by VulnCheck and has a working public exploit.

ssvc Actepss 1.1%
from disclosure to weapon
Published on NVDAug 31
VulnCheck+328d
exploitation probability
1.1%top 39% of all CVEs
observed exploitation
yesVulnCheck
Multiple reflected cross-site scripting (XSS) vulnerabilities in the ErroreNonGestito.aspx component of GruppoSCAI RealGimm 1.1.37p38 allow attackers to execute arbitrary Javascript in the context of a victim user's browser via a crafted payload injected into the VIEWSTATE parameter.
Affected products
n/a · n/a