CVE-2024-31361

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Published Apr 11, 2024

CWE ID 79

Summary

CVE-2024-31361 is a Cross-site Scripting (XSS) vulnerability affecting bunny.Net, specifically in its input neutralization during web page generation. This issue allows attackers to inject and execute malicious scripts on victims' browsers, potentially leading to unauthorized access or data theft. The flaw exists in versions of bunny.Net from n/a through 2.0.1. Users are advised to apply updates or patches as soon as possible to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vUi05v
https://www.cve.org/CVERecord?id=CVE-2024-31361
https://nvd.nist.gov/vuln/detail/CVE-2024-31361

Back to Vulnerability Database

CVE-2024-31361

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations