Security Advisory

CVE-2023-38435

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-07-25 15:40:05

Last updated 2025-02-13 17:01:51

Assigner apache

State PUBLISHED

Description

An improper neutralization of input during web page generation (Cross-site Scripting) [CWE-79] vulnerability in Apache Felix Healthcheck Webconsole Plugin version 2.0.2 and prior may allow an attacker to perform a reflected cross-site scripting (XSS) attack. Upgrade to Apache Felix Healthcheck Webconsole Plugin 2.1.0 or higher.

← Browse all CVEs View on cve.org ↗