Security Advisory

CVE-2023-0746

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-03-10 00:00:00

Last updated 2025-02-27 19:03:17

Assigner INCIBE

State PUBLISHED

Description

The help page in GigaVUE-FM, when using GigaVUE-OS software version 5.0 202, does not require an authenticated user. An attacker could enforce a user into inserting malicious JavaScript code into the URI, that could lead to a Reflected Cross site Scripting.

← Browse all CVEs View on cve.org ↗