CVE-2024-49503
CVSS V2 None
CVSS V3 None
Description
A Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in SUSE manager allows attackers to execute Javascript code in the organization credentials sub page.
This issue affects Container suse/manager/5.0/x86_64/server:5.0.2.7.8.1: before 5.0.15-150600.3.10.2; SUSE Manager Server Module 4.3: before 4.3.42-150400.3.52.1.
Overview
- CVE ID
- CVE-2024-49503
- Assigner
- suse
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-11-28T09:20:03.366Z
- Last Modified Date
- 2024-11-28T12:15:16.804Z
Weakness Enumerations
References
Reference URL | Reference Tags |
---|---|
https://bugzilla.suse.com/show_bug.cgi?id=CVE-2024-49503 |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-49503 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-49503 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2024-11-29 13:10:25 | Added to TrackCVE |