CVE-2024-47093

Fix various XSS issues and potential RCE

CVSS 8.8 HIGHEPSS 0.5%CWE-79

Improper neutralization of input in Nagvis before version 1.9.42 which can lead to XSS

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Produtos afetados

Nagvis · Nagvis

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/NagVis/nagvis/commit/30e71e8167d17a1828e7da71d6942f6fb36478cd https://github.com/NagVis/nagvis/commit/b5b1164007439de526df7d54d5c02d7732ba1c42 https://lists.debian.org/debian-lts-announce/2025/05/msg00000.html https://www.nagvis.org/downloads/changelog/1.9.42