MEDIUM🇵🇱 Wersja polska

CVE-2024-38430

CVSS 5.4v3.1pub. 2024-07-30upd. 2024-11-21

Matrix - CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
  • Matrix Globalservices Tafnit

    APP
    Matrix-Globalservices
    < 8.4.202
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
XSS
CWE
References

Related vulnerabilities

CVE-2024-38429HIGH7.5ten sam produkt

Matrix Tafnit v8 -  CWE-552: Files or Directories Accessible to External Parties

CVE-2024-38431MEDIUM5.3ten sam produkt

Matrix Tafnit v8 - CWE-204: Observable Response Discrepancy

CVE-2024-38432MEDIUM5.5ten sam produkt

Matrix Tafnit v8 - CWE-646: Reliance on File Name or Extension of Externally-Supplied File