CVE-2023-1860

Опубликовано: 05 апр. 2023

Источник: nvd

CVSS3: 3.5

CVSS3: 6.1

CVSS2: 4

EPSS Низкий

Описание

A vulnerability was found in Keysight IXIA Hawkeye 3.3.16.28. It has been declared as problematic. This vulnerability affects unknown code of the file /licenses. The manipulation of the argument view with the input teste"> leads to cross site scripting. The attack can be initiated remotely. VDB-224998 is the identifier assigned to this vulnerability. NOTE: Vendor did not respond if and how they may handle this issue.

Ссылки

https://vuldb.com/?ctiid.224998
Permissions Required
Third Party Advisory
VDB Entry
https://vuldb.com/?id.224998
Permissions Required
Third Party Advisory
VDB Entry
https://vuldb.com/?ctiid.224998
Permissions Required
Third Party Advisory
VDB Entry
https://vuldb.com/?id.224998
Permissions Required
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:keysight:hawkeye:3.3.16.28:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00075

Низкий

3.5 Low

CVSS3

6.1 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-wxc7-vgcm-5grf

CVSS3: 6.1

github

почти 3 года назад

A vulnerability was found in Keysight IXIA Hawkeye 3.3.16.28. It has been declared as problematic. This vulnerability affects unknown code of the file /licenses. The manipulation of the argument view with the input teste"><script>alert(%27c4ng4c3ir0%27)</script> leads to cross site scripting. The attack can be initiated remotely. VDB-224998 is the identifier assigned to this vulnerability. NOTE: Vendor did not respond if and how they may handle this issue.

EPSS

Процентиль: 23%

0.00075

Низкий

3.5 Low

CVSS3

6.1 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-79