exploitDog

GHSA-f842-2fv3-vvjf

Опубликовано: 08 июл. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 4.8

Описание

A Cross-Site Scripting (XSS) vulnerability found in UniFi Network (Version 7.3.83 and earlier) allows a malicious actor with Site Administrator credentials to escalate privileges by persuading an Administrator to visit a malicious web page.

A Cross-Site Scripting (XSS) vulnerability found in UniFi Network (Version 7.3.83 and earlier) allows a malicious actor with Site Administrator credentials to escalate privileges by persuading an Administrator to visit a malicious web page.

Ссылки

EPSS

Процентиль: 54%

0.00309

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2023-32000

CVSS3: 4.8

nvd

больше 2 лет назад

A Cross-Site Scripting (XSS) vulnerability found in UniFi Network (Version 7.3.83 and earlier) allows a malicious actor with Site Administrator credentials to escalate privileges by persuading an Administrator to visit a malicious web page.

EPSS

Процентиль: 54%

0.00309

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79