Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/02 11:11 a.m.15 views

CVE-2025-24338

A vulnerability in the “Manages app data” functionality of the web application of ctrlX OS allows a remote authenticated lowprivileged attacker to execute arbitrary client-side code in the context of another user's browser via multiple crafted HTTP requests...

7.1CVSS7.7AI score0.00317EPSS
Exploits0References1
CVE
CVE
added 2025/04/30 10:51 a.m.53 views

CVE-2025-24338

CVE-2025-24338 affects the web application of ctrlX OS, specifically the "Manages app data" functionality. A remote authenticated (low privilege) attacker can execute arbitrary client-side code in another user’s browser by sending multiple crafted HTTP requests. Evidence from multiple sources con...

7.1CVSS7.4AI score0.00317EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/30 10:51 a.m.7 views

CVE-2025-24338

A vulnerability in the “Manages app data” functionality of the web application of ctrlX OS allows a remote authenticated lowprivileged attacker to execute arbitrary client-side code in the context of another user's browser via multiple crafted HTTP requests...

7.1CVSS7.3AI score0.00317EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/30 10:51 a.m.24 views

CVE-2025-24338

A vulnerability in the “Manages app data” functionality of the web application of ctrlX OS allows a remote authenticated lowprivileged attacker to execute arbitrary client-side code in the context of another user's browser via multiple crafted HTTP requests...

7.1CVSS0.00317EPSS
Exploits0References1
Rows per page
Query Builder