CVE-2014-125088

LOW

3.5

Description

A vulnerability was found in qt-users-jp silk 0.0.1. It has been declared as problematic. This vulnerability affects unknown code of the file contents/root/examples/header.qml. The manipulation of the argument model.key/model.value leads to cross site scripting. The attack can be initiated remotely. The name of the patch is bbc5d6eeea800025ef29edda3fd3c57836239eae. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-221488.

CVE Details

CVSS v3.1 Score3.5

SeverityLOW

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N

Attack VectorNETWORK

ComplexityLOW

Privileges RequiredLOW

User InteractionREQUIRED

Published2/20/2023

Last Modified11/21/2024

Sourcenvd

Honeypot Sightings0

Affected Products

qt-users:silk

Weaknesses (CWE)

CWE-79

References

https://github.com/qt-users-jp/silk/commit/bbc5d6eeea800025ef29edda3fd3c57836239eae(cna@vuldb.com)

https://vuldb.com/?ctiid.221488(cna@vuldb.com)

https://vuldb.com/?id.221488(cna@vuldb.com)

https://github.com/qt-users-jp/silk/commit/bbc5d6eeea800025ef29edda3fd3c57836239eae(af854a3a-2127-422b-91ae-364da2661108)

https://vuldb.com/?ctiid.221488(af854a3a-2127-422b-91ae-364da2661108)

https://vuldb.com/?id.221488(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.