CVE-2024-22397
Published Mar 14, 2024
Last updated 8 months ago
Overview
- Description
- Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in the SonicOS SSLVPN portal allows a remote authenticated attacker as a firewall 'admin' user to store and execute arbitrary JavaScript code.
- Source
- PSIRT@sonicwall.com
- NVD status
- Awaiting Analysis
Weaknesses
- PSIRT@sonicwall.com
- CWE-79
Social media
- Hype score
- Not currently trending