mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
1.1 KiB
1.1 KiB
CVE-2024-37348
&color=brightgreen)
Description
There is a cross-sitescripting vulnerability in the management UI of Absolute Secure Access prior toversion 13.06. Attackers with system administrator permissions can interferewith another system administrator’s use of the management UI when the secondadministrator later edits the same management object. This vulnerability isdistinct from CVE-2024-37349 and CVE-2024-37351. The scope is unchanged,there is no loss of confidentiality. Impact to system integrity is high, impactto system availability is none.
POC
Reference
No PoCs from references.