CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-29714

Cross Site Scripting vulnerability found in Vade Secure Gateway allows a remote attacker to execute arbitrary code via the username, password, and language cookies parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.1%

CVSS Severity

CVSS v3 Score 6.1

References

https://info.vadesecure.com/hubfs/Ressource%20Marketing%20Website/Datasheet/EN/Vade_Secure_DS_Gateway_EN.pdf
https://labs.yarix.com/advisories/cve-2023-29714-dom-based-xss-in-vade-secure-gateway/
https://www.vadesecure.com/en/
https://info.vadesecure.com/hubfs/Ressource%20Marketing%20Website/Datasheet/EN/Vade_Secure_DS_Gateway_EN.pdf
https://labs.yarix.com/advisories/cve-2023-29714-dom-based-xss-in-vade-secure-gateway/
https://www.vadesecure.com/en/

Products affected by CVE-2023-29714

Vadesecure » Secure Gateway » Version: N/A

cpe:2.3:a:vadesecure:secure_gateway:-
Vadesecure » Secure Gateway » Version: 3.0

cpe:2.3:a:vadesecure:secure_gateway:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-29714

Products

Pricing

Contact Us