Security Advisory

CVE-2024-49210

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-10-22 00:00:00

Last updated 2024-10-30 18:37:31

Assigner mitre

State PUBLISHED

Description

Reflected XSS was discovered in an iView List Archer Platform UX page in Archer Platform 6.x before version 2024.09. A remote unauthenticated attacker could potentially exploit this by tricking a victim application user into supplying malicious HTML or JavaScript code to the vulnerable web application; the malicious code is then reflected back to the victim and executed by the web browser in the context of the vulnerable web application.

← Browse all CVEs View on cve.org ↗