CVE-2024-42346

CVSS V2 None CVSS V3 None
Description
Galaxy is a free, open-source system for analyzing data, authoring workflows, training and education, publishing tools, managing infrastructure, and more. The editor visualization, /visualizations endpoint, can be used to store HTML tags and trigger javascript execution upon edit operation. All supported branches of Galaxy (and more back to release_20.05) were amended with the supplied patches. Users are advised to upgrade. There are no known workarounds for this vulnerability.
Overview
  • CVE ID
  • CVE-2024-42346
  • Assigner
  • GitHub_M
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-09-20T18:53:01.373Z
  • Last Modified Date
  • 2024-09-20T20:09:40.416Z
References
History
Created Old Value New Value Data Type Notes
2024-10-06 06:43:29 Added to TrackCVE