CVE-2024-9158 - CERT CVE

  1. CVE-2024-9158

ID CVE-2024-9158
Sažetak A stored cross site scripting vulnerability exists in Nessus Network Monitor where an authenticated, privileged local attacker could inject arbitrary code into the NNM UI via the local CLI.
Reference
CVSS
Base: 4.6
Impact: 2.7
Exploitability:1.5
Pristup
VektorSloženostAutentikacija
LOCAL LOW LOW
Impact
PovjerljivostCjelovitostDostupnost
LOW LOW NONE
CVSS vektor CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Zadnje važnije ažuriranje 07-10-2024 - 16:13
Objavljeno 30-09-2024 - 17:15