Lucene search
HistoryJan 24, 2024 - 4:15 p.m.
CVE-2024-22725
orthanc server
xss vulnerability
error reporting
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.0005 Low
EPSS
Percentile
17.0%
Orthanc versions before 1.12.2 are affected by a reflected cross-site scripting (XSS) vulnerability. The vulnerability was present in the server’s error reporting.
Affected configurations
Node
orthanc-serverorthancRange<1.12.2
Related
veracode
veracode
Cross Site Scripting (XSS)
2024-01-29 21:06:27
debiancve
debiancve
CVE-2024-22725
2024-01-24 16:15:08
ubuntucve
ubuntucve
CVE-2024-22725
2024-01-24 00:00:00
cve
cve
CVE-2024-22725
2024-01-24 16:15:08
prion
prion
Cross site scripting
2024-01-24 16:15:00
cvelist
cvelist
CVE-2024-22725
2024-01-24 00:00:00
6.1 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
0.0005 Low
EPSS
Percentile
17.0%
Related for NVD:CVE-2024-22725