Vulnerabilities

CVE-2024-1143

by Fred · 02/02/2024

Central Dogma versions prior to 0.64.1 is vulnerable to Cross-Site Scripting (XSS), which could allow for the leakage of user sessions and subsequent authentication bypass.

More information : https://github.com/line/centraldogma/security/advisories/GHSA-34q3-p352-c7q8

Attack vector : NETWORK
Attack complexity : LOW
Privileges required : NONE
User interaction : REQUIRED
Confidentiality impact : LOW
Integrity impact : LOW
Base score : 6.1
Base severity : MEDIUM
Exploitability score : 2.8
Impact score : 2.7

Similar

Tags: Cybersecurity Alert