Security Advisory

CVE-2022-35229

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-07-06 11:05:12

Last updated 2025-11-03 21:46:22

Assigner Zabbix

State PUBLISHED

Description

An authenticated user can create a link with reflected Javascript code inside it for the discovery page and send it to other users. The payload can be executed only with a known CSRF token value of the victim, which is changed periodically and is difficult to predict.

← Browse all CVEs View on cve.org ↗