Описание
An attacker might be able to inject HTML content into the internal web dashboard by sending crafted DNS queries to a DNSdist instance where domain-based dynamic rules have been enabled via either DynBlockRulesGroup:setSuffixMatchRule or DynBlockRulesGroup:setSuffixMatchRuleFFI.
EPSS
Процентиль: 0%
0.00003
Низкий
3.1 Low
CVSS3
Дефекты
CWE-80
Связанные уязвимости
CVSS3: 3.1
debian
7 дней назад
An attacker might be able to inject HTML content into the internal web ...
CVSS3: 3.1
github
7 дней назад
An attacker might be able to inject HTML content into the internal web dashboard by sending crafted DNS queries to a DNSdist instance where domain-based dynamic rules have been enabled via either DynBlockRulesGroup:setSuffixMatchRule or DynBlockRulesGroup:setSuffixMatchRuleFFI.
EPSS
Процентиль: 0%
0.00003
Низкий
3.1 Low
CVSS3
Дефекты
CWE-80