Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2024-21838
HistoryMar 05, 2024 - 3:15 a.m.

Code injection

2024-03-0503:15:00
PRIOn knowledge base
www.prio-n.com
7
code injection
html
email
command centre server
gallagher
vulnerability
cwe-74
nvd

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

Improper neutralization of special elements in output (CWE-74) used by the email generation feature of the Command Centre Server could lead to HTML code injection in emails generated by Command Centre.

This issue affects: Gallagher Command Centre 9.00 prior to vEL9.00.1774 (MR2), 8.90 prior to vEL8.90.1751 (MR3), 8.80 prior to vEL8.80.1526 (MR4), 8.70 prior to vEL8.70.2526 (MR6), Β all version of 8.60 and prior.

Related

cvelist 1
nvd 1
cve 1
cvelist
cvelist
CVE-2024-21838
2024-03-05 03:11:55
nvd
nvd
CVE-2024-21838
2024-03-05 03:15:06
cve
cve
CVE-2024-21838
2024-03-05 03:15:06

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON
Related for PRION:CVE-2024-21838
cvelist1nvd1cve1