Description
An unauthenticated remote attacker can use an XSS attack due to improper neutralization of input during web page generation. User interaction is required. This leads to a limited impact of confidentiality and integrity but no impact of availability.
Analysis and contextual insights are available on OpenCVE Cloud.
Remediation
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2018-13843 | An unauthenticated remote attacker can use an XSS attack due to improper neutralization of input during web page generation. User interaction is required. This leads to a limited impact of confidentiality and integrity but no impact of availability. |
References
| Link | Providers |
|---|---|
| https://cert.vde.com/en/advisories/VDE-2023-039/ |
|
History
No history.
Subscriptions
No data.
Status: PUBLISHED
Assigner: CERTVDE
Published:
Updated: 2024-08-05T15:22:05.933Z
Reserved: 2023-09-14T13:00:21.075Z
Link: CVE-2018-25090
Updated: 2024-08-05T12:33:48.504Z
Status : Deferred
Published: 2024-03-13T09:15:07.040
Modified: 2026-06-17T01:54:41.787
Link: CVE-2018-25090
No data.
OpenCVE Enrichment
No data.
Weaknesses
EUVD