CVE-2024-4176 in EDR UIthông tin

Tóm tắt

Bởi MITRE • 13/06/2024

An Cross site scripting vulnerability in the EDR XConsole before this release allowed an attacker to potentially leverage an XSS/HTML-Injection using command line variables. A malicious threat actor could execute commands on the victim's browser for sending carefully crafted malicious links to the EDR XConsole end user.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

chịu trách nhiệm

Trellix

Đặt trước

25/04/2024

Tiết lộ

13/06/2024

Kiểm duyệt

được chấp nhận

EPSS

0.00313

KEV

không

Các hoạt động

rất thấp

Nguồn

Do you know our Splunk app?

Download it now for free!