CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-39575

A reflected cross-site scripting (XSS) vulnerability in the url_str URL parameter of ISL ARP Guard v4.0.2 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 43.5%

CVSS Severity

CVSS v3 Score 5.4

References

https://evait.medium.com/discovery-of-a-reflective-xss-vulnerability-in-arp-guard-software-1734b5113e1c
https://evait.medium.com/discovery-of-a-reflective-xss-vulnerability-in-arp-guard-software-1734b5113e1c

Products affected by CVE-2023-39575

Isl » Arp-Guard » Version: 4.0.0-5

cpe:2.3:a:isl:arp-guard:4.0.0-5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-39575

Products

Pricing

Contact Us