Lucene search
Veracode Vulnerability DatabaseVERACODE:44193HistoryNov 08, 2023 - 8:20 a.m.
Cross-site Scripting (XSS)
2023-11-0808:20:02
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
velocidex
velociraptor
cross-site scripting
javascript
browser vulnerability
CVSS3
8.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
19.8%
github.com/velocidex/velociraptor is vulnerable to Cross-site Scripting. This vulnerability exists because it does not properly validate error paths, allowing an attacker to inject and execute malicious JavaScript in the browser
Related
prion
prion
Cross site scripting
2023-11-06 15:15:00
cve
cve
CVE-2023-5950
2023-11-06 15:15:14
cvelist
cvelist
CVE-2023-5950 Rapid7 Velociraptor Reflected XSS
2023-11-06 14:30:28
vulnrichment
vulnrichment
CVE-2023-5950 Rapid7 Velociraptor Reflected XSS
2023-11-06 14:30:28
osv
osv
CVE-2023-5950
2023-11-06 15:15:14
system-user-velociraptor-1.0.0-5.1 on GA media
2024-06-15 00:00:00
rapid7blog
rapid7blog
CVE-2023-5950 Rapid7 Velociraptor Reflected XSS
2023-11-10 18:56:15
nvd
nvd
CVE-2023-5950
2023-11-06 15:15:14
CVSS3
8.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L
AI Score
6.8
Confidence
High
EPSS
0.001
Percentile
19.8%
Related for VERACODE:44193