2 matches found
CVE-2023-2421
CVE-2023-2421 affects Control iD RHiD 23.3.19.0. The vulnerability is a cross-site scripting issue in an unknown function of the file "/v2/#/add/department" where manipulation of the Name argument leads to XSS. It can be exploited remotely. Multiple sources (NVD, Red Hat, PRION, CVE lists) consis...
CVE-2023-2524
CVE-2023-2524 describes a critical vulnerability in Control iD RHiD 23.3.19.0. It affects an unknown part of the file /v2/#/ and allows manipulation that leads to a direct request; the attack can be initiated remotely. The issue is widely reported across multiple sources, with vendor contact note...