← Back to CVEs
CVE-2018-6189
N/ADescription
F-Secure Radar (on-premises) before 2018-02-15 has XSS via vectors involving the Tags parameter in the JSON request body in an outbound request for the /api/latest/vulnerabilityscans/tags/batch resource, aka a "suggested metadata tags for assets" issue.
CVE Details
CVSS v3.1 ScoreN/A
Published2/16/2018
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
f-secure:radar
Weaknesses (CWE)
CWE-79
References
http://oscarhjelm.com/blag/2018/02/f-secure-radar-persistent-cross-site-scripting-vulnerability/(cve@mitre.org)
http://www.securityfocus.com/bid/103100(cve@mitre.org)
http://oscarhjelm.com/blag/2018/02/f-secure-radar-persistent-cross-site-scripting-vulnerability/(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/103100(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.