CVE-2022-25256

Опубликовано: 19 фев. 2022

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Низкий

Описание

SAS Web Report Studio 4.4 allows XSS. /SASWebReportStudio/logonAndRender.do has two parameters: saspfs_request_backlabel_list and saspfs_request_backurl_list. The first one affects the content of the button placed in the top left. The second affects the page to which the user is directed after pressing the button, e.g., a malicious web page. In addition, the second parameter executes JavaScript, which means XSS is possible by adding a javascript: URL.

Ссылки

https://github.com/RobertDra/CVE-2022-25256
Broken Link
https://sas.com
Product
https://support.sas.com/kb/62/972.html
Vendor Advisory
https://github.com/RobertDra/CVE-2022-25256
Broken Link
https://sas.com
Product
https://support.sas.com/kb/62/972.html
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:sas:web_report_studio:4.4:*:*:*:*:*:*:*

Одно из

cpe:2.3:a:hpe:hp-ux_ipfilter:-:*:*:*:*:*:*:*

cpe:2.3:o:ibm:aix:-:*:*:*:*:*:x64:*

cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:x64:*

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:x64:*

cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:x64:*

EPSS

Процентиль: 73%

0.00747

Низкий

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-f94m-q2w2-2g64

github

почти 4 года назад