Lucene search

K
prionPRIOn knowledge basePRION:CVE-2024-28112
HistoryMar 12, 2024 - 8:15 p.m.

Cross site scripting

2024-03-1220:15:00
PRIOn knowledge base
www.prio-n.com
11
peering manager
cross-site scripting
xss attack
bgp session management
version 1.8.3
javascript code
security vulnerability
upgrade

0.0004 Low

EPSS

Percentile

9.1%

Peering Manager is a BGP session management tool. Affected versions of Peering Manager are subject to a potential stored Cross-Site Scripting (XSS) attack in the name attribute of AS or Platform. The XSS triggers on a routers detail page. Adversaries are able to execute arbitrary JavaScript code with the permission of a victim. XSS attacks are often used to steal credentials or login tokens of other users. This issue has been addressed in version 1.8.3. Users are advised to upgrade. There are no known workarounds for this vulnerability.

0.0004 Low

EPSS

Percentile

9.1%

Related for PRION:CVE-2024-28112