Lucene search
PRIOn knowledge basePRION:CVE-2024-0317HistoryJan 15, 2024 - 5:15 p.m.
Cross site scripting
2024-01-1517:15:00
PRIOn knowledge base
www.prio-n.com
3
cross-site scripting
fireeye ex
version 9.0.3.936727
javascript payload
authenticated user
session details
Cross-Site Scripting in FireEye EX, affecting version 9.0.3.936727. Exploitation of this vulnerability allows an attacker to send a specially crafted JavaScript payload via the ‘type’ and ‘s_f_name’ parameters to an authenticated user to retrieve their session details.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ex_3500_firmware | eq | 9.0.3.936727 | |
| ex_5500_firmwarea | eq | 9.0.3.936727 | |
| ex_8500_firmware | eq | 9.0.3.936727 |
Related
cvelist
cvelist
CVE-2024-0317 Cross-Site Scripting in FireEye EX
2024-01-15 16:23:34
cve
cve
CVE-2024-0317
2024-01-15 17:15:08
nvd
nvd
CVE-2024-0317
2024-01-15 17:15:08