Lucene search
HistorySep 04, 2024 - 3:15 p.m.
CVE-2024-7077
cve-2024-7077
web page generation
cross-site scripting
semtek informatics software consulting inc. semtek sempos
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.7%
Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Semtek Informatics Software Consulting Inc. Semtek Sempos allows Reflected XSS.This issue affects Semtek Sempos: through 31072024.
Affected configurations
Node
semtekyazilimsemtek_semposRange≤31072024
| Vendor | Product | Version | CPE |
|---|---|---|---|
| semtekyazilim | semtek_sempos | * | cpe:2.3:a:semtekyazilim:semtek_sempos:*:*:*:*:*:*:*:* |
References
Related
vulnrichment
vulnrichment
CVE-2024-7077 Reflected XSS in Semtek Informatics Software's Semtek Sempos
2024-09-04 14:24:40
cvelist
cvelist
CVE-2024-7077 Reflected XSS in Semtek Informatics Software's Semtek Sempos
2024-09-04 14:24:40
cve
cve
CVE-2024-7077
2024-09-04 15:15:14
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
17.7%
Related for NVD:CVE-2024-7077