Lucene search
HistoryAug 14, 2024 - 2:15 p.m.
CVE-2024-7790
cve-2024-7790
cross site scripting
devikaai
user input
vulnerability
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0
Percentile
14.7%
A stored cross site scripting vulnerabilities exists in DevikaAI from commitΒ 6acce21fb08c3d1123ef05df6a33912bf0ee77c2 onwards via improperly decoded user input.
Affected configurations
Node
stitionaidevikaRange2024-06-08β₯
Related
vulnrichment
vulnrichment
CVE-2024-7790 DevikaAI Stored Cross-Site Scripting
2024-08-14 13:49:42
cve
cve
CVE-2024-7790
2024-08-14 14:15:28
cvelist
cvelist
CVE-2024-7790 DevikaAI Stored Cross-Site Scripting
2024-08-14 13:49:42
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0
Percentile
14.7%
Related for NVD:CVE-2024-7790