HCL Verse is susceptible to a Reflected Cross Site Scripting (XSS) vulnerability. By tricking a user into entering crafted markup a remote, unauthenticated attacker could execute script in a victim's web browser to perform operations as the victim and/or steal the victim's cookies, session tokens, or other sensitive information.
History

Wed, 23 Oct 2024 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: HCL

Published: 2023-07-26T22:54:44.917Z

Updated: 2024-10-23T15:29:49.975Z

Reserved: 2023-03-10T03:50:27.023Z

Link: CVE-2023-28013

cve-icon Vulnrichment

Updated: 2024-08-02T12:23:30.798Z

cve-icon NVD

Status : Modified

Published: 2023-07-26T23:15:09.787

Modified: 2024-11-21T07:53:55.853

Link: CVE-2023-28013

cve-icon Redhat

No data.