exploitDog

CVE-2022-43363

Опубликовано: 06 дек. 2022

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

Telegram Web 15.3.1 allows XSS via a certain payload derived from a Target Corporation website. NOTE: some third parties have been unable to discern any relationship between the Pastebin information and a possible XSS finding.

Ссылки

https://bugs.telegram.org/c/17831
Product
https://pastebin.com/72MRwNXW
Exploit
Third Party Advisory
https://bugs.telegram.org/c/17831
Product
https://pastebin.com/72MRwNXW
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:telegram:telegram:15.3.1:*:*:*:*:-:*:*

EPSS

Процентиль: 46%

0.00234

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-vjx6-6r3w-rpqc

CVSS3: 6.1

github

около 3 лет назад

** DISPUTED ** Telegram Web 15.3.1 allows XSS via a certain payload derived from a Target Corporation website. NOTE: some third parties have been unable to discern any relationship between the Pastebin information and a possible XSS finding.

EPSS

Процентиль: 46%

0.00234

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79