Security Advisory

CVE-2024-52053

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-11-21 22:31:31

Last updated 2024-11-22 16:10:58

Assigner rapid7

State PUBLISHED

Description

Stored Cross-Site Scripting in the Manager component of Wowza Streaming Engine below 4.9.1 allows an unauthenticated attacker to inject client-side JavaScript into the web dashboard to automatically hijack admin accounts.

← Browse all CVEs View on cve.org ↗