Lucene search

Ubuntu.comUB:CVE-2023-29455

HistoryJul 13, 2023 - 12:00 a.m.

CVE-2023-29455

2023-07-1300:00:00

ubuntu.com

reflected xss non-persistent attacks web application vulnerability execution malicious scripts unix

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

22.8%

JSON

Reflected XSS attacks, also known as non-persistent attacks, occur when a
malicious script is reflected off a web application to the victim’s
browser. The script is activated through a link, which sends a request to a
website with a vulnerability that enables execution of malicious scripts.

OSVersionArchitecturePackageVersionFilename
ubuntu20.04noarchzabbix< anyUNKNOWN
ubuntu22.04noarchzabbix< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	20.04	noarch	zabbix	< any	UNKNOWN
ubuntu	22.04	noarch	zabbix	< any	UNKNOWN

References

launchpad.net/bugs/cve/CVE-2023-29455

nvd.nist.gov/vuln/detail/CVE-2023-29455

security-tracker.debian.org/tracker/CVE-2023-29455

support.zabbix.com/browse/ZBX-22986

www.cve.org/CVERecord?id=CVE-2023-29455

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

0.001 Low

EPSS

Percentile

22.8%

JSON

Related for UB:CVE-2023-29455