CVE-2024-51905

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Nov 19, 2024

CWE ID 79

Summary

CVE-2024-51905 is a Cross-site Scripting (XSS) vulnerability affecting Ravi & Suma RSV PDF Preview. The flaw, which allows stored XSS, resides in the application's improper neutralization of user input during web page generation. This issue can be exploited by attackers to inject malicious scripts into a affected webpage, potentially leading to unauthorized access or data theft. The vulnerability is present in versions of RSV PDF Preview from n/a through 1.0. Users are advised to apply the necessary patches as soon as possible to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0MEFBx
https://www.cve.org/CVERecord?id=CVE-2024-51905
https://nvd.nist.gov/vuln/detail/CVE-2024-51905

Back to Vulnerability Database

CVE-2024-51905

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations