2 matches found
CVE-2024-0315
CVE-2024-0315 affects FireEye/Central Management (version 9.1.1.956704). A remote file inclusion flaw in the report creation workflow allows an attacker to upload a malicious PDF to the system. Documented impact indicates high confidentiality, integrity, and availability risks (per CVSS details i...
CVE-2024-0314
CVE-2024-0314 is a reflected XSS vulnerability in FireEye Central Management (v9.1.1.956704). The issue allows an attacker to modify HTML elements in the application, enabling session hijacking. Documents consistently describe XSS in the affected FireEye Central Management product; no explicit ro...