OpenTextVULNRICHMENT:CVE-2024-4187CVE-2024-4187 Stored XSS vulnerability has been discovered in OpenText™ Filr. The vulnerability could cause users to not be warned when clicking links to external sites.
CVSS4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
PASSIVE
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:L/SC:L/VI:N/SI:N/VA:N/SA:N/S:P/AU:N/U:Green/V:D/RE:L
AI Score
Confidence
High
EPSS
Percentile
14.6%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Stored XSS vulnerability has been discovered in OpenText™ Filr product, affecting versions 24.1.1 and 24.2. The vulnerability could cause users to not be warned when clicking links to external sites.
CNA Affected
[
{
"vendor": "OpenText™",
"product": "Filr",
"versions": [
{
"status": "affected",
"version": "24.1.1"
},
{
"status": "affected",
"version": "24.2"
}
],
"defaultStatus": "unaffected"
}
]
CVSS4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
PASSIVE
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:P/VC:L/SC:L/VI:N/SI:N/VA:N/SA:N/S:P/AU:N/U:Green/V:D/RE:L
AI Score
Confidence
High
EPSS
Percentile
14.6%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial