CVE-2024-49392

Sažetak

Stored cross-site scripting (XSS) vulnerability on enrollment invitation page. The following products are affected: Acronis Cyber Files (Windows) before build 9.0.0x24.

Reference

CVSS

Base:	5.7
Impact:	5.2
Exploitability:	0.5

Pristup

Vektor	Složenost	Autentikacija
NETWORK	HIGH	HIGH

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	HIGH	NONE

CVSS vektor

CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N

Zadnje važnije ažuriranje

18-10-2024 - 20:10

Objavljeno

17-10-2024 - 10:15