CVE-2024-9467
Expedition: Reflected Cross-Site Scripting Vulnerability Leads to Expedition Session Disclosure
A reflected XSS vulnerability in Palo Alto Networks Expedition enables execution of malicious JavaScript in the context of an authenticated Expedition user's browser if that user clicks on a malicious link, allowing phishing attacks that could lead to Expedition browser session theft.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N/AU:N/R:U/V:C/RE:H/U:Amber
Productos afectados
Palo Alto Networks · Expedition¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →