CVE-2023-28013 | THREATINT

Description

HCL Verse is susceptible to a Reflected Cross Site Scripting (XSS) vulnerability. By tricking a user into entering crafted markup a remote, unauthenticated attacker could execute script in a victim's web browser to perform operations as the victim and/or steal the victim's cookies, session tokens, or other sensitive information.

PUBLISHED Reserved 2023-03-10 | Published 2023-07-26 | Updated 2024-10-23 | Assigner HCL

MEDIUM: 6.5CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:L

Product status

Default status

unaffected

< 3.1

affected

References

support.hcltechsw.com/...b_article&sysparm_article=KB0105905

cve.org (CVE-2023-28013)

nvd.nist.gov (CVE-2023-28013)

Download JSON

help @ threatint.eu