Lucene search
HistoryMay 09, 2023 - 9:15 p.m.
CVE-2023-30057
cve-2023-30057
cross-site scripting
fico origination manager
web scripts
html
crafted payload
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.002 Low
EPSS
Percentile
57.7%
Multiple stored cross-site scripting (XSS) vulnerabilities in FICO Origination Manager Decision Module 4.8.1 allow attackers to execute arbitrary web scripts or HTML via a crafted payload.
Affected configurations
Node
ficoorigination_manager_decisionMatch4.8.1
Related
prion
prion
Cross site scripting
2023-05-09 21:15:00
cvelist
cvelist
CVE-2023-30057
2023-05-09 00:00:00
cve
cve
CVE-2023-30057
2023-05-09 21:15:11
zdt
zdt
packetstorm
packetstorm
FICO Origination Manager Decision Module 4.8.1 XSS / Session Hijacking
2023-05-08 00:00:00
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
0.002 Low
EPSS
Percentile
57.7%
Related for NVD:CVE-2023-30057