CVE-2021-42083 - Authenticated Stored XSS in OSNEXUS QuantaStor 6.0.0.335
CVE | CVE-2021-42083 | |||||||||||
Credits | ||||||||||||
Affected products |
|
|||||||||||
CVSS |
Base score:
8.7
(HIGH) |
|||||||||||
References |
|
|||||||||||
Problem type(s) | CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') | |||||||||||
Solution(s) | Upgrade to the latest version of OSNEXUS QuantaStor. | |||||||||||
Last modified | 05 Jul 2023 21:48 |
Description
An authenticated attacker is able to create alerts that trigger a stored XSS attack.
JSON version