Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentCERT-PLVULNRICHMENT:CVE-2024-6449
HistoryAug 28, 2024 - 11:49 a.m.

CVE-2024-6449 Arbitrary cross-domain file inclusion in HyperView Geoportal Toolkit

2024-08-2811:49:42
CWE-942
CERT-PL
github.com
4
cve-2024
remote content fetching
script execution
local area network

CVSS4

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

PASSIVE

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/SC:L/VI:L/SI:L/VA:N/SA:L

AI Score

6.9

Confidence

Low

EPSS

0.001

Percentile

17.7%

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON

HyperView Geoportal Toolkit in versions lower than 8.5.0 does not restrict cross-domain requests when fetching remote content pointed by one of GET request parameters.
An unauthenticated remote attacker can prepare links, which upon opening will load scripts from a remote location controlled by the attacker and execute them in the user space.
By manipulating this parameter it is also possible to enumerate some of the devices in Local Area Network in which the server resides.

Related

cvelist 1
nvd 1
cve 1
cvelist
cvelist
CVE-2024-6449 Arbitrary cross-domain file inclusion in HyperView Geoportal Toolkit
2024-08-28 11:49:42
nvd
nvd
CVE-2024-6449
2024-08-28 12:15:06
cve
cve
CVE-2024-6449
2024-08-28 12:15:06

CVSS4

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

PASSIVE

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/SC:L/VI:L/SI:L/VA:N/SA:L

AI Score

6.9

Confidence

Low

EPSS

0.001

Percentile

17.7%

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON
Related for VULNRICHMENT:CVE-2024-6449
cvelist1nvd1cve1