Описание
An XSS vulnerability was discovered in Veritas Data Insight before 7.1. It allows a remote attacker to inject an arbitrary web script into an HTTP request that could reflect back to an authenticated user without sanitization if executed by that user.
Уязвимые конфигурации
Конфигурация 1Версия от 6.0 (включая) до 7.1 (исключая)
cpe:2.3:a:veritas:data_insight:*:*:*:*:*:*:*:*
EPSS
Процентиль: 86%
0.03056
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 6.1
github
больше 1 года назад
A vulnerability was discovered in Veritas Data Insight before 7.1. It allows a remote attacker to inject an arbitrary web script into an HTTP request that could reflect back to an authenticated user without sanitization if executed by that user.
EPSS
Процентиль: 86%
0.03056
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79