Lucene search
Veracode Vulnerability DatabaseVERACODE:45907HistoryMar 18, 2024 - 6:26 a.m.
Insecure CORS Configuration
2024-03-1806:26:19
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
vantage6
vulnerable
cors
configuration
unauthorized access
sensitive data
CVSS3
4.2
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
AI Score
6.7
Confidence
High
EPSS
0
Percentile
9.0%
vantage6 is vulnerable to Insecure CORS Configuration. This vulnerability is due to the absence of proper CORS configuration, which can allow unauthorized domains to access sensitive data.
Related
cvelist
cvelist
CVE-2024-23823 CORS settings overly permissive in vantage6
2024-03-14 18:47:50
osv
osv
CVE-2024-23823
2024-03-14 19:15:49
vantage6's CORS settings overly permissive
2024-03-15 16:42:55
nvd
nvd
CVE-2024-23823
2024-03-14 19:15:49
github
github
vantage6's CORS settings overly permissive
2024-03-15 16:42:55
cve
cve
CVE-2024-23823
2024-03-14 19:15:49
vulnrichment
vulnrichment
CVE-2024-23823 CORS settings overly permissive in vantage6
2024-03-14 18:47:50
CVSS3
4.2
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N
AI Score
6.7
Confidence
High
EPSS
0
Percentile
9.0%
Related for VERACODE:45907