mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-29 01:31:20 +00:00
49 lines
1.5 KiB
JSON
49 lines
1.5 KiB
JSON
{
|
|
"id": "CVE-2024-13722",
|
|
"sourceIdentifier": "bbf0bd87-ece2-41be-b873-96928ee8fab9",
|
|
"published": "2025-02-04T22:15:40.113",
|
|
"lastModified": "2025-02-05T01:15:08.323",
|
|
"vulnStatus": "Received",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "The \"NagVis\" component within Checkmk is vulnerable to reflected cross-site scripting. An attacker can craft a malicious link that will execute arbitrary JavaScript in the context of the browser once clicked. The attack can be performed on both authenticated and unauthenticated users."
|
|
}
|
|
],
|
|
"metrics": {},
|
|
"weaknesses": [
|
|
{
|
|
"source": "bbf0bd87-ece2-41be-b873-96928ee8fab9",
|
|
"type": "Secondary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "CWE-79"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "https://checkmk.com/werks?version=2.3.0p10",
|
|
"source": "bbf0bd87-ece2-41be-b873-96928ee8fab9"
|
|
},
|
|
{
|
|
"url": "https://korelogic.com/Resources/Advisories/KL-001-2025-001.txt",
|
|
"source": "bbf0bd87-ece2-41be-b873-96928ee8fab9"
|
|
},
|
|
{
|
|
"url": "https://www.nagvis.org/downloads/changelog/1.9.42",
|
|
"source": "bbf0bd87-ece2-41be-b873-96928ee8fab9"
|
|
},
|
|
{
|
|
"url": "http://seclists.org/fulldisclosure/2025/Feb/3",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
},
|
|
{
|
|
"url": "http://www.openwall.com/lists/oss-security/2025/02/04/3",
|
|
"source": "af854a3a-2127-422b-91ae-364da2661108"
|
|
}
|
|
]
|
|
} |