CVE-2024-29775

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Mar 27, 2024

CWE ID 79

Summary

CVE-2024-29775 is a Cross-site Scripting (XSS) vulnerability affecting the Frontend Dashboard from version n/a to 2.2.1. The issue arises due to improper neutralization of user input during web page generation. An attacker can exploit this vulnerability by injecting malicious scripts in the dashboard, leading to unintended execution of code in users' browsers. Consequently, sensitive data could be stolen or system functions could be manipulated. It is crucial for users to update their dashboard to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vDXczK
https://www.cve.org/CVERecord?id=CVE-2024-29775
https://nvd.nist.gov/vuln/detail/CVE-2024-29775

Back to Vulnerability Database

CVE-2024-29775

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations