Lucene search
MitreCVE-2023-38347HistoryAug 09, 2023 - 8:15 p.m.
CVE-2023-38347
2023-08-0920:15:10
CWE-79
mitre
web.nvd.nist.gov
21
xss
lwsystems benno mailarchiv
cve-2023-38347
security vulnerability
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
33.2%
An issue was discovered in LWsystems Benno MailArchiv 2.10.1. Attackers can cause XSS via JavaScript content to a mailbox.
Affected configurations
Node
lw-systemsbenno_mailarchivRange<2.10.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| lw-systems | benno_mailarchiv | * | cpe:2.3:a:lw-systems:benno_mailarchiv:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2023-38347
2023-08-09 20:15:10
cvelist
cvelist
CVE-2023-38347
2023-08-09 00:00:00
prion
prion
Code injection
2023-08-09 20:15:00
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
33.2%
Related for CVE-2023-38347