CVE-2023-23383 — Cross-site Scripting in Microsoft Azure Service Fabric 9.0 FOR Linux

CWE-79 — Cross-site Scripting2 documents2 sources

Severity

8.2HIGHCNA

No vector

EPSS

3.4%

top 12.48%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

4

Microsoft Azure Service Fabric 9.0 FOR Linux Microsoft Azure Service Fabric 9.0 FOR Windows Microsoft Azure Service Fabric 9.1 FOR Ubuntu +1 more

Timeline

PublishedMar 14

Description

Service Fabric Explorer Spoofing Vulnerability Service Fabric Explorer Spoofing Vulnerability

Affected Packages4 packages

▶CVEListV5microsoft/azure_service_fabric_9.0_for_linux9.0 — 9.0.1317.1

▶CVEListV5microsoft/azure_service_fabric_9.1_for_ubuntu9.0 — 9.1.1388.1

▶CVEListV5microsoft/azure_service_fabric_9.0_for_windows9.0 — 9.0.1380.9590

▶CVEListV5microsoft/azure_service_fabric_9.1_for_windows9.0 — 9.1.1583.9590

🔴Vulnerability Details

1

CVEList

Service Fabric Explorer Spoofing Vulnerability↗2023-03-14

▶

📋Vendor Advisories

1

Microsoft

Service Fabric Explorer Spoofing Vulnerability↗2023-03-14

▶

CVE-2023-23383 — Cross-site Scripting in Microsoft | cvebase