Security Advisory

CVE-2023-23637

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-01-17 00:00:00

Last updated 2025-04-04 17:39:52

Assigner mitre

State PUBLISHED

Description

IMPatienT before 1.5.2 allows stored XSS via onmouseover in certain text fields within a PATCH /modify_onto request to the ontology builder. This may allow attackers to steal Protected Health Information.

← Browse all CVEs View on cve.org ↗