← Voltar para CVEs
CVE-2018-6189
N/ADescricao
F-Secure Radar (on-premises) before 2018-02-15 has XSS via vectors involving the Tags parameter in the JSON request body in an outbound request for the /api/latest/vulnerabilityscans/tags/batch resource, aka a "suggested metadata tags for assets" issue.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado2/16/2018
Ultima modificacao11/21/2024
Fontenvd
Avistamentos honeypot0
Produtos afetados
f-secure:radar
Fraquezas (CWE)
CWE-79
Referencias
http://oscarhjelm.com/blag/2018/02/f-secure-radar-persistent-cross-site-scripting-vulnerability/(cve@mitre.org)
http://www.securityfocus.com/bid/103100(cve@mitre.org)
http://oscarhjelm.com/blag/2018/02/f-secure-radar-persistent-cross-site-scripting-vulnerability/(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/103100(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.