Vulnerability Details CVE-2024-47854
An XSS vulnerability was discovered in Veritas Data Insight before 7.1. It allows a remote attacker to inject an arbitrary web script into an HTTP request that could reflect back to an authenticated user without sanitization if executed by that user.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.5%
CVSS Severity
CVSS v3 Score 6.1
Products affected by CVE-2024-47854
-
cpe:2.3:a:veritas:data_insight:6.0
-
cpe:2.3:a:veritas:data_insight:6.1
-
cpe:2.3:a:veritas:data_insight:6.1.1
-
cpe:2.3:a:veritas:data_insight:6.1.2
-
cpe:2.3:a:veritas:data_insight:6.1.3
-
cpe:2.3:a:veritas:data_insight:6.1.4
-
cpe:2.3:a:veritas:data_insight:6.1.5
-
cpe:2.3:a:veritas:data_insight:6.1.6
-
cpe:2.3:a:veritas:data_insight:6.2
-
cpe:2.3:a:veritas:data_insight:6.3
-
cpe:2.3:a:veritas:data_insight:6.3.1
-
cpe:2.3:a:veritas:data_insight:6.4
-
cpe:2.3:a:veritas:data_insight:6.4.1
-
cpe:2.3:a:veritas:data_insight:6.5
-
cpe:2.3:a:veritas:data_insight:6.5.1
-
cpe:2.3:a:veritas:data_insight:6.5.2
-
cpe:2.3:a:veritas:data_insight:6.6
-
cpe:2.3:a:veritas:data_insight:6.6.1
-
cpe:2.3:a:veritas:data_insight:6.6.2
-
cpe:2.3:a:veritas:data_insight:7.0
-
cpe:2.3:a:veritas:data_insight:7.0.1
-
cpe:2.3:a:veritas:data_insight:7.0.2