Security Advisory

CVE-2024-30214

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-04-09 00:56:29

Last updated 2024-08-02 01:25:03

Assigner sap

State PUBLISHED

Description

The application allows a high privilege attacker to append a malicious GET query parameter to Service invocations, which are reflected in the server response. Under certain circumstances, if the parameter contains a JavaScript, the script could be processed on client side.

← Browse all CVEs View on cve.org ↗