exploitDog

GHSA-8jc6-8757-hm2h

Опубликовано: 19 дек. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 8.3

Описание

Improper neutralization of input during web page generation ('cross-site scripting') in Azure Cosmos DB allows an unauthorized attacker to perform spoofing over a network.

Improper neutralization of input during web page generation ('cross-site scripting') in Azure Cosmos DB allows an unauthorized attacker to perform spoofing over a network.

Ссылки

EPSS

Процентиль: 24%

0.00081

Низкий

8.3 High

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2025-64675

CVSS3: 8.3

nvd

2 дня назад

Improper neutralization of input during web page generation ('cross-site scripting') in Azure Cosmos DB allows an unauthorized attacker to perform spoofing over a network.

CVE-2025-64675

msrc

3 дня назад

Azure Cosmos DB Spoofing Vulnerability

EPSS

Процентиль: 24%

0.00081

Низкий

8.3 High

CVSS3

CVE ID

Дефекты

CWE-79