CVE-2025-45938

MEDIUM

5.4

Description

Akeles Out of Office Assistant for Jira 4.0.1 is vulberable to Cross Site Scripting (XSS) via the Jira fullName parameter.

Score CVSS v3.15.4

SeveriteMEDIUM

Vecteur CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

Vecteur d'attaqueNETWORK

ComplexiteLOW

Privileges requisNONE

Interaction utilisateurREQUIRED

Publie7/3/2025

Derniere modification10/10/2025

Sourcenvd

Observations honeypot0

akeles:out_of_office_assistant

CWE-79

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.