CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-31199

A “CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')” allows malicious users to permanently inject arbitrary Javascript code.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.9%

CVSS Severity

CVSS v3 Score 8.8

References

https://www.nozominetworks.com/labs/vulnerability-advisories-cve-2024-31199

Products affected by CVE-2024-31199

Proges » Sensor Net Connect V2 » Version: N/A

cpe:2.3:h:proges:sensor_net_connect_v2:-
Proges » Sensor Net Connect Firmware V2 » Version: 2.24

cpe:2.3:o:proges:sensor_net_connect_firmware_v2:2.24

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-31199

Products

Pricing

Contact Us