CVE-2023-48679
CVSS V2 None
CVSS V3 None
Description
Stored cross-site scripting (XSS) vulnerability due to missing origin validation in postMessage. The following products are affected: Acronis Cyber Protect 16 (Linux, Windows) before build 37391.
Overview
- CVE ID
- CVE-2023-48679
- Assigner
- Acronis
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-02-27T16:45:53.340Z
- Last Modified Date
- 2024-02-27T17:06:47.223Z
Weakness Enumerations
References
Reference URL | Reference Tags |
---|---|
https://security-advisory.acronis.com/advisories/SEC-3469 | vendor-advisory |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-48679 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-48679 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2024-06-24 23:54:51 | Added to TrackCVE |