CVE-2023-37222

Name of the Vulnerable Software and Affected Versions Farsight Tech Nordic AB ProVide version 14.5

Description Multiple XSS vulnerabilities can be exploited by a user with administrator privilege.

Recommendations For version 14.5, consider disabling access to administrator privileges until a patch is available. Restrict access to potentially vulnerable modules or functions to minimize the risk of exploitation. Avoid using potentially vulnerable API endpoints or parameters until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.