CVE-2024-10033

CVSS V2 None CVSS V3 None
Description
A vulnerability was found in aap-gateway. A Cross-site Scripting (XSS) vulnerability exists in the gateway component. This flaw allows a malicious user to perform actions that impact users by using the "?next=" in a URL, which can lead to redirecting, injecting malicious script, stealing sessions and data.
Overview
  • CVE ID
  • CVE-2024-10033
  • Assigner
  • redhat
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-10-16T16:59:43.968Z
  • Last Modified Date
  • 2024-10-16T17:56:50.402Z
References
Reference URL Reference Tags
https://access.redhat.com/security/cve/CVE-2024-10033 vdb-entry x_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2319162 issue-tracking x_refsource_REDHAT
History
Created Old Value New Value Data Type Notes
2024-10-17 13:14:25 Added to TrackCVE