exploitDog

GHSA-6p47-w2hq-8j72

Опубликовано: 01 янв. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 4.8

Описание

PrimeKey EJBCA 7.9.0.2 Community allows stored XSS in the End Entity section. A user with the RA Administrator role can inject an XSS payload to target higher-privilege users.

PrimeKey EJBCA 7.9.0.2 Community allows stored XSS in the End Entity section. A user with the RA Administrator role can inject an XSS payload to target higher-privilege users.

Ссылки

EPSS

Процентиль: 57%

0.00352

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2022-40711

CVSS3: 4.8

nvd

около 3 лет назад

PrimeKey EJBCA 7.9.0.2 Community allows stored XSS in the End Entity section. A user with the RA Administrator role can inject an XSS payload to target higher-privilege users.

EPSS

Процентиль: 57%

0.00352

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79