CVE-2024-7901

17 Ago 2024

Jose Alexis Correa Valencia
0 Comentarios

Título es

CVE-2024-7901

Sáb, 17/08/2024 – 21:15

Tipo

CWE-79

Gravedad v2.0

4.00

Gravedad 2.0 Txt

MEDIUM

Título en

CVE-2024-7901

Descripción en

A vulnerability has been found in Scada-LTS 2.7.8 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /Scada-LTS/app.shtm#/alarms/Scada of the component Message Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

17/08/2024

Vector CVSS:3.1

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Vector CVSS:2.0

AV:N/AC:L/Au:S/C:N/I:P/A:N

Gravedad 3.1 (CVSS 3.1 Base Score)

3.50

Gravedad 3.1 Txt Gravedad 3.1 (CVSS 3.1 Base Score)

LOW

Referencias

https://vuldb.com/?ctiid_274909=

https://vuldb.com/?id_274909=

https://vuldb.com/?submit_387606=

Enviar en el boletín

Off

CVE-2024-7901

CVE-2024-7901

Jose Alexis Correa Valencia