Overview
- Description
- A vulnerability has been identified in which unauthenticated cross-site scripting (XSS) in Norman's public API endpoint can be exploited. This can lead to an attacker exploiting the vulnerability to trigger JavaScript code and execute commands remotely.
- Source
- meissner@suse.de
- NVD status
- Awaiting Analysis
Risk scores
CVSS 3.1
- Type
- Secondary
- Base score
- 8.3
- Impact score
- 5.5
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L
- Severity
- HIGH
Weaknesses
- meissner@suse.de
- CWE-80
Social media
- Hype score
- Not currently trending
CVE-2023-32193 A vulnerability has been identified in which unauthenticated cross-site scripting (XSS) in Norman's public API endpoint can be exploited. This can lead to an attack… https://t.co/VLYVB2a5ae
@CVEnew
386 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2023-32193: HIGH] Unauthenticated XSS vulnerability found in Norman's public API, enabling attackers to trigger JavaScript code remotely. Stay alert and implement security measures. #cybersecurity#cybersecurity,#vulnerability https://t.co/oULFq9TRyM https://t.co/GZtReB0DIo
@CveFindCom
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes