Security Advisory

CVE-2024-31847

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-21 15:34:04
Last updated 2025-03-13 17:32:58
Assigner mitre
State PUBLISHED

Description

An issue was discovered in Italtel Embrace 1.6.4. A stored cross-site scripting (XSS) vulnerability allows authenticated and unauthenticated remote attackers to inject arbitrary web script or HTML into a GET parameter. This reflects/stores the user input without sanitization.