Описание
Sony BRAVIA Digital Signage 1.7.8 contains a remote file inclusion vulnerability that allows attackers to inject arbitrary client-side scripts through the content material URL parameter. Attackers can exploit this vulnerability to hijack user sessions, execute cross-site scripting code, and modify display content by manipulating the input material type.
Ссылки
EPSS
Процентиль: 24%
0.00082
Низкий
7.5 High
CVSS3
Дефекты
CWE-829
Связанные уязвимости
CVSS3: 7.5
github
около 1 месяца назад
Sony BRAVIA Digital Signage 1.7.8 contains a remote file inclusion vulnerability that allows attackers to inject arbitrary client-side scripts through the content material URL parameter. Attackers can exploit this vulnerability to hijack user sessions, execute cross-site scripting code, and modify display content by manipulating the input material type.
EPSS
Процентиль: 24%
0.00082
Низкий
7.5 High
CVSS3
Дефекты
CWE-829