Lucene search
PegaVULNRICHMENT:CVE-2024-6700HistorySep 12, 2024 - 2:24 p.m.
CVE-2024-6700
2024-09-1214:24:08
CWE-79
Pega
github.com
1
pega platform
xss
app name
cve-2024-6700
CVSS3
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
AI Score
6.1
Confidence
High
EPSS
0
Percentile
14.7%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an XSS issue with App name.
Related
nvd
nvd
CVE-2024-6700
2024-09-12 15:18:26
cvelist
cvelist
CVE-2024-6700
2024-09-12 14:24:08
cve
cve
CVE-2024-6700
2024-09-12 15:18:26
CVSS3
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
AI Score
6.1
Confidence
High
EPSS
0
Percentile
14.7%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-6700