CVE-2024-43025

Sažetak

An HTML injection vulnerability in RWS MultiTrans v7.0.23324.2 and earlier allows attackers to alter the HTML-layout and possibly execute a phishing attack via a crafted payload injected into a sent e-mail.

Reference

https://community.rws.com/product-groups/translation_management/multitrans/w/releases/5112/multitrans-7-releases
https://github.com/Sharpe-nl/CVEs/tree/main/CVE-2024-43025
https://github.com/tomdantuma/CVE/tree/main/2024-43025

CVSS

Base:	0.0
Impact:	None
Exploitability:	None

Pristup

Vektor	Složenost	Autentikacija
None	None	None

Impact

Povjerljivost	Cjelovitost	Dostupnost
None	None	None

CVSS vektor

None

Zadnje važnije ažuriranje

18-09-2024 - 20:15

Objavljeno

18-09-2024 - 20:15