Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2024-44088

Malicious script injection ('Cross-site Scripting') vulnerability in Apache Geode web-api (REST). This vulnerability allows an attacker that tricks a logged-in user into clicking a specially-crafted link to execute code on the returned page, which could lead to theft of the user's session information and even account takeover. This issue affects Apache Geode: all versions prior to 1.15.2 Users are recommended to upgrade to version 1.15.2, which fixes the issue.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 11.2%
CVSS Severity
CVSS v3 Score 6.1
Products affected by CVE-2024-44088
  • Apache » Geode » Version: 1.1.0
    cpe:2.3:a:apache:geode:1.1.0
  • Apache » Geode » Version: 1.1.1
    cpe:2.3:a:apache:geode:1.1.1
  • Apache » Geode » Version: 1.10.0
    cpe:2.3:a:apache:geode:1.10.0
  • Apache » Geode » Version: 1.11.0
    cpe:2.3:a:apache:geode:1.11.0
  • Apache » Geode » Version: 1.12.0
    cpe:2.3:a:apache:geode:1.12.0
  • Apache » Geode » Version: 1.12.1
    cpe:2.3:a:apache:geode:1.12.1
  • Apache » Geode » Version: 1.12.2
    cpe:2.3:a:apache:geode:1.12.2
  • Apache » Geode » Version: 1.12.3
    cpe:2.3:a:apache:geode:1.12.3
  • Apache » Geode » Version: 1.12.4
    cpe:2.3:a:apache:geode:1.12.4
  • Apache » Geode » Version: 1.12.5
    cpe:2.3:a:apache:geode:1.12.5
  • Apache » Geode » Version: 1.12.6
    cpe:2.3:a:apache:geode:1.12.6
  • Apache » Geode » Version: 1.12.7
    cpe:2.3:a:apache:geode:1.12.7
  • Apache » Geode » Version: 1.12.8
    cpe:2.3:a:apache:geode:1.12.8
  • Apache » Geode » Version: 1.12.9
    cpe:2.3:a:apache:geode:1.12.9
  • Apache » Geode » Version: 1.13.0
    cpe:2.3:a:apache:geode:1.13.0
  • Apache » Geode » Version: 1.13.1
    cpe:2.3:a:apache:geode:1.13.1
  • Apache » Geode » Version: 1.13.2
    cpe:2.3:a:apache:geode:1.13.2
  • Apache » Geode » Version: 1.13.3
    cpe:2.3:a:apache:geode:1.13.3
  • Apache » Geode » Version: 1.13.4
    cpe:2.3:a:apache:geode:1.13.4
  • Apache » Geode » Version: 1.13.5
    cpe:2.3:a:apache:geode:1.13.5
  • Apache » Geode » Version: 1.13.6
    cpe:2.3:a:apache:geode:1.13.6
  • Apache » Geode » Version: 1.13.7
    cpe:2.3:a:apache:geode:1.13.7
  • Apache » Geode » Version: 1.13.8
    cpe:2.3:a:apache:geode:1.13.8
  • Apache » Geode » Version: 1.14.0
    cpe:2.3:a:apache:geode:1.14.0
  • Apache » Geode » Version: 1.14.1
    cpe:2.3:a:apache:geode:1.14.1
  • Apache » Geode » Version: 1.14.2
    cpe:2.3:a:apache:geode:1.14.2
  • Apache » Geode » Version: 1.14.3
    cpe:2.3:a:apache:geode:1.14.3
  • Apache » Geode » Version: 1.14.4
    cpe:2.3:a:apache:geode:1.14.4
  • Apache » Geode » Version: 1.15.0
    cpe:2.3:a:apache:geode:1.15.0
  • Apache » Geode » Version: 1.15.1
    cpe:2.3:a:apache:geode:1.15.1
  • Apache » Geode » Version: 1.2.0
    cpe:2.3:a:apache:geode:1.2.0
  • Apache » Geode » Version: 1.2.1
    cpe:2.3:a:apache:geode:1.2.1
  • Apache » Geode » Version: 1.3.0
    cpe:2.3:a:apache:geode:1.3.0
  • Apache » Geode » Version: 1.4.0
    cpe:2.3:a:apache:geode:1.4.0
  • Apache » Geode » Version: 1.5.0
    cpe:2.3:a:apache:geode:1.5.0
  • Apache » Geode » Version: 1.6.0
    cpe:2.3:a:apache:geode:1.6.0
  • Apache » Geode » Version: 1.7.0
    cpe:2.3:a:apache:geode:1.7.0
  • Apache » Geode » Version: 1.8.0
    cpe:2.3:a:apache:geode:1.8.0
  • Apache » Geode » Version: 1.9.0
    cpe:2.3:a:apache:geode:1.9.0
  • Apache » Geode » Version: 1.9.1
    cpe:2.3:a:apache:geode:1.9.1
  • Apache » Geode » Version: 1.9.2
    cpe:2.3:a:apache:geode:1.9.2


Products
Pricing
Contact Us

Shodan ® - All rights reserved