Supermicro Devices Vulnerable to XSS Attack via Internet Explorer 11 on Windows
CVE-2023-40290
Currently unrated
What is CVE-2023-40290?
A vulnerability identified in Supermicro's X11SSM-F, X11SAE-F, and X11SSE-F devices allows attackers to perform cross-site scripting (XSS) attacks via Internet Explorer 11 running on Windows. This security flaw could enable malicious actors to execute arbitrary scripts in the context of a user's session, potentially leading to unauthorized activities or data exposure. Users are encouraged to apply security updates and implement best security practices to mitigate risks associated with this vulnerability.