Security Advisory

CVE-2022-36368

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-10-24 00:00:00

Last updated 2025-05-07 14:26:45

Assigner jpcert

State PUBLISHED

Description

Multiple stored cross-site scripting vulnerabilities in the web user interface of IPFire versions prior to 2.27 allows a remote authenticated attacker with administrative privilege to inject an arbitrary script.

← Browse all CVEs View on cve.org ↗