CVE-2024-47140
CVE-2024-47140
A cross-site scripting (xss) vulnerability exists in the add_alert_check page of Observium CE 24.4.13528. A specially crafted HTTP request can lead to a arbitrary javascript code execution. An authenticated user would need to click a malicious link provided by the attacker.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:N
Produtos afetados
Observium · ObserviumQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →