Security Advisory

CVE-2024-4176

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-13 08:59:37

Last updated 2024-08-01 20:33:52

Assigner trellix

State PUBLISHED

Description

An Cross site scripting vulnerability in the EDR XConsole before this release allowed an attacker to potentially leverage an XSS/HTML-Injection using command line variables. A malicious threat actor could execute commands on the victims browser for sending carefully crafted malicious links to the EDR XConsole end user.

← Browse all CVEs View on cve.org ↗