Описание
In Progress Flowmon before 12.2.0, an application endpoint failed to sanitize user-supplied input. A threat actor could leverage a reflected XSS vulnerability to execute arbitrary code within the context of a Flowmon user's web browser.
Ссылки
- Third Party Advisory
- Product
- Third Party Advisory
- Product
Уязвимые конфигурации
Конфигурация 1Версия до 12.2.0 (исключая)
cpe:2.3:o:progress:flowmon_os:*:*:*:*:*:*:*:*
EPSS
Процентиль: 1%
0.00012
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 6.1
github
почти 3 года назад
In Progress Flowmon before 12.2.0, an application endpoint failed to sanitize user-supplied input. A threat actor could leverage a reflected XSS vulnerability to execute arbitrary code within the context of a Flowmon user's web browser.
EPSS
Процентиль: 1%
0.00012
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79