CVE-2023-26100
CVSS V2 None
CVSS V3 None
Description
In Progress Flowmon before 12.2.0, an application endpoint failed to sanitize user-supplied input. A threat actor could leverage a reflected XSS vulnerability to execute arbitrary code within the context of a Flowmon user's web browser.
Overview
- CVE ID
- CVE-2023-26100
- Assigner
- cve@mitre.org
- Vulnerability Status
- Awaiting Analysis
- Published Version
- 2023-04-21T12:15:07
- Last Modified Date
- 2023-04-24T13:02:23
References
| Reference URL | Reference Tags |
|---|---|
| https://support.kemptechnologies.com/hc/en-us/articles/12736934205837 | |
| https://www.flowmon.com/en |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-26100 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26100 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2023-04-21 13:00:49 | Added to TrackCVE | |||
| 2023-04-24 14:02:29 | 2023-04-24T13:02:23 | CVE Modified Date | updated | |
| 2023-04-24 14:02:29 | Received | Awaiting Analysis | Vulnerability Status | updated |