Vulnerabilities

CVE-2022-30289

by Fred · 05/07/2022

A stored Cross-site Scripting (XSS) vulnerability was identified in the Data Import functionality of OpenCTI through 5.2.4. An attacker can abuse the vulnerability to upload a malicious file that will then be executed by a victim when they open the file location.

Date published : 2022-07-05

https://github.com/OpenCTI-Platform/opencti/releases

https://www.enisa.europa.eu/topics/threat-risk-management/vulnerability-disclosure

Similar

Tags: Cybersecurity Alert