CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-52943

An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24697. It allows an authenticated remote attacker to inject a parameter into an HTTP request, allowing for Cross-Site Scripting (XSS) while viewing archived content. This could reflect back to an authenticated user without sanitization if executed by that user.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.8%

CVSS Severity

CVSS v3 Score 5.4

References

https://www.veritas.com/support/en_US/security/VTS24-013

Products affected by CVE-2024-52943

Veritas » Enterprise Vault » Version: N/A

cpe:2.3:a:veritas:enterprise_vault:-
Veritas » Enterprise Vault » Version: 12.0

cpe:2.3:a:veritas:enterprise_vault:12.0
Veritas » Enterprise Vault » Version: 12.0.1

cpe:2.3:a:veritas:enterprise_vault:12.0.1
Veritas » Enterprise Vault » Version: 12.0.2

cpe:2.3:a:veritas:enterprise_vault:12.0.2
Veritas » Enterprise Vault » Version: 12.0.3

cpe:2.3:a:veritas:enterprise_vault:12.0.3
Veritas » Enterprise Vault » Version: 12.0.4

cpe:2.3:a:veritas:enterprise_vault:12.0.4
Veritas » Enterprise Vault » Version: 12.1

cpe:2.3:a:veritas:enterprise_vault:12.1
Veritas » Enterprise Vault » Version: 12.1.1

cpe:2.3:a:veritas:enterprise_vault:12.1.1
Veritas » Enterprise Vault » Version: 12.1.2

cpe:2.3:a:veritas:enterprise_vault:12.1.2
Veritas » Enterprise Vault » Version: 12.1.3

cpe:2.3:a:veritas:enterprise_vault:12.1.3
Veritas » Enterprise Vault » Version: 12.2

cpe:2.3:a:veritas:enterprise_vault:12.2
Veritas » Enterprise Vault » Version: 12.2.1

cpe:2.3:a:veritas:enterprise_vault:12.2.1
Veritas » Enterprise Vault » Version: 12.2.2

cpe:2.3:a:veritas:enterprise_vault:12.2.2
Veritas » Enterprise Vault » Version: 12.2.3

cpe:2.3:a:veritas:enterprise_vault:12.2.3
Veritas » Enterprise Vault » Version: 12.3

cpe:2.3:a:veritas:enterprise_vault:12.3
Veritas » Enterprise Vault » Version: 12.3.1

cpe:2.3:a:veritas:enterprise_vault:12.3.1
Veritas » Enterprise Vault » Version: 12.3.2

cpe:2.3:a:veritas:enterprise_vault:12.3.2
Veritas » Enterprise Vault » Version: 12.4

cpe:2.3:a:veritas:enterprise_vault:12.4
Veritas » Enterprise Vault » Version: 12.4.1

cpe:2.3:a:veritas:enterprise_vault:12.4.1
Veritas » Enterprise Vault » Version: 12.4.2

cpe:2.3:a:veritas:enterprise_vault:12.4.2
Veritas » Enterprise Vault » Version: 12.5

cpe:2.3:a:veritas:enterprise_vault:12.5
Veritas » Enterprise Vault » Version: 12.5.1

cpe:2.3:a:veritas:enterprise_vault:12.5.1
Veritas » Enterprise Vault » Version: 12.5.2

cpe:2.3:a:veritas:enterprise_vault:12.5.2
Veritas » Enterprise Vault » Version: 14.0

cpe:2.3:a:veritas:enterprise_vault:14.0
Veritas » Enterprise Vault » Version: 14.0.1

cpe:2.3:a:veritas:enterprise_vault:14.0.1
Veritas » Enterprise Vault » Version: 14.1

cpe:2.3:a:veritas:enterprise_vault:14.1
Veritas » Enterprise Vault » Version: 14.1.1

cpe:2.3:a:veritas:enterprise_vault:14.1.1
Veritas » Enterprise Vault » Version: 14.1.2

cpe:2.3:a:veritas:enterprise_vault:14.1.2
Veritas » Enterprise Vault » Version: 14.1.3

cpe:2.3:a:veritas:enterprise_vault:14.1.3
Veritas » Enterprise Vault » Version: 14.2

cpe:2.3:a:veritas:enterprise_vault:14.2
Veritas » Enterprise Vault » Version: 14.2.1

cpe:2.3:a:veritas:enterprise_vault:14.2.1
Veritas » Enterprise Vault » Version: 14.2.2

cpe:2.3:a:veritas:enterprise_vault:14.2.2
Veritas » Enterprise Vault » Version: 14.2.3

cpe:2.3:a:veritas:enterprise_vault:14.2.3
Veritas » Enterprise Vault » Version: 14.3

cpe:2.3:a:veritas:enterprise_vault:14.3
Veritas » Enterprise Vault » Version: 14.3.1

cpe:2.3:a:veritas:enterprise_vault:14.3.1
Veritas » Enterprise Vault » Version: 14.3.2

cpe:2.3:a:veritas:enterprise_vault:14.3.2
Veritas » Enterprise Vault » Version: 14.4

cpe:2.3:a:veritas:enterprise_vault:14.4
Veritas » Enterprise Vault » Version: 14.4.1

cpe:2.3:a:veritas:enterprise_vault:14.4.1
Veritas » Enterprise Vault » Version: 14.4.2

cpe:2.3:a:veritas:enterprise_vault:14.4.2
Veritas » Enterprise Vault » Version: 14.5

cpe:2.3:a:veritas:enterprise_vault:14.5
Veritas » Enterprise Vault » Version: 14.5.1

cpe:2.3:a:veritas:enterprise_vault:14.5.1
Veritas » Enterprise Vault » Version: 15.0

cpe:2.3:a:veritas:enterprise_vault:15.0
Veritas » Enterprise Vault » Version: 15.0.1

cpe:2.3:a:veritas:enterprise_vault:15.0.1
Veritas » Enterprise Vault » Version: 15.0.2

cpe:2.3:a:veritas:enterprise_vault:15.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-52943

Products

Pricing

Contact Us