exploitDog

CVE-2023-28014

Опубликовано: 27 июл. 2023

Источник: nvd

CVSS3: 6.6

CVSS3: 5.4

EPSS Низкий

Описание

HCL BigFix Mobile is vulnerable to a cross-site scripting attack. An authenticated attacker could inject malicious scripts into the application.

Ссылки

https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0106371
Vendor Advisory
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0106371
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hcltech:bigfix_mobile:3.0:*:*:*:*:*:*:*

EPSS

Процентиль: 29%

0.00108

Низкий

6.6 Medium

CVSS3

5.4 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-6xq7-pq77-mfp5

CVSS3: 6.6

github

больше 2 лет назад

HCL BigFix Mobile is vulnerable to a cross-site scripting attack. An authenticated attacker could inject malicious scripts into the application.

EPSS

Процентиль: 29%

0.00108

Низкий

6.6 Medium

CVSS3

5.4 Medium

CVSS3

Дефекты

CWE-79