Lucene search
PegaVULNRICHMENT:CVE-2024-6702HistorySep 12, 2024 - 2:25 p.m.
CVE-2024-6702
2024-09-1214:25:44
CWE-74
Pega
github.com
1
pega platform
html injection
stage
security issue
cve-2024-6702
CVSS3
5.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:L/A:N
AI Score
7
Confidence
Low
EPSS
0
Percentile
14.7%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Pega Platform versions 8.1 to Infinity 24.1.2 are affected by an HTML Injection issue with Stage.
Related
cvelist
cvelist
CVE-2024-6702
2024-09-12 14:25:44
nvd
nvd
CVE-2024-6702
2024-09-12 15:18:27
cve
cve
CVE-2024-6702
2024-09-12 15:18:27
CVSS3
5.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:L/A:N
AI Score
7
Confidence
Low
EPSS
0
Percentile
14.7%
SSVC
Exploitation
none
Automatable
no
Technical Impact
partial
Related for VULNRICHMENT:CVE-2024-6702