Lucene search
GoogleOSV:CVE-2023-3973HistoryJul 27, 2023 - 3:15 p.m.
CVE-2023-3973
2023-07-2715:15:12
Google
osv.dev
5
github
xss
cross-site scripting
reflected
jgraph/drawio
security vulnerability
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
6.3
Confidence
High
EPSS
0.001
Percentile
30.6%
Cross-site Scripting (XSS) - Reflected in GitHub repository jgraph/drawio prior to 21.6.3.
Related
cvelist
cvelist
CVE-2023-3973 Cross-site Scripting (XSS) - Reflected in jgraph/drawio
2023-07-27 14:33:11
prion
prion
Cross site scripting
2023-07-27 15:15:00
huntr
huntr
XSS with CSP bypass leads to diagrams backdoor
2023-07-17 21:18:02
nvd
nvd
CVE-2023-3973
2023-07-27 15:15:12
cve
cve
CVE-2023-3973
2023-07-27 15:15:12
CVSS3
6.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
AI Score
6.3
Confidence
High
EPSS
0.001
Percentile
30.6%
Related for OSV:CVE-2023-3973