CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-52944

An issue was discovered in Veritas Enterprise Vault before 15.1 UPD882911, ZDI-CAN-24698. It allows an authenticated remote attacker to inject a parameter into an HTTP request, allowing for Cross-Site Scripting while viewing archived content. This could reflect back to an authenticated user without sanitization if executed by that user.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.6%

CVSS Severity

CVSS v3 Score 5.4

References

https://www.veritas.com/support/en_US/security/VTS24-013

Products affected by CVE-2024-52944

Veritas » Enterprise Vault » Version: N/A

cpe:2.3:a:veritas:enterprise_vault:-
Veritas » Enterprise Vault » Version: 12.0

cpe:2.3:a:veritas:enterprise_vault:12.0
Veritas » Enterprise Vault » Version: 12.0.1

cpe:2.3:a:veritas:enterprise_vault:12.0.1
Veritas » Enterprise Vault » Version: 12.0.2

cpe:2.3:a:veritas:enterprise_vault:12.0.2
Veritas » Enterprise Vault » Version: 12.0.3

cpe:2.3:a:veritas:enterprise_vault:12.0.3
Veritas » Enterprise Vault » Version: 12.0.4

cpe:2.3:a:veritas:enterprise_vault:12.0.4
Veritas » Enterprise Vault » Version: 12.1

cpe:2.3:a:veritas:enterprise_vault:12.1
Veritas » Enterprise Vault » Version: 12.1.1

cpe:2.3:a:veritas:enterprise_vault:12.1.1
Veritas » Enterprise Vault » Version: 12.1.2

cpe:2.3:a:veritas:enterprise_vault:12.1.2
Veritas » Enterprise Vault » Version: 12.1.3

cpe:2.3:a:veritas:enterprise_vault:12.1.3
Veritas » Enterprise Vault » Version: 12.2

cpe:2.3:a:veritas:enterprise_vault:12.2
Veritas » Enterprise Vault » Version: 12.2.1

cpe:2.3:a:veritas:enterprise_vault:12.2.1
Veritas » Enterprise Vault » Version: 12.2.2

cpe:2.3:a:veritas:enterprise_vault:12.2.2
Veritas » Enterprise Vault » Version: 12.2.3

cpe:2.3:a:veritas:enterprise_vault:12.2.3
Veritas » Enterprise Vault » Version: 12.3

cpe:2.3:a:veritas:enterprise_vault:12.3
Veritas » Enterprise Vault » Version: 12.3.1

cpe:2.3:a:veritas:enterprise_vault:12.3.1
Veritas » Enterprise Vault » Version: 12.3.2

cpe:2.3:a:veritas:enterprise_vault:12.3.2
Veritas » Enterprise Vault » Version: 12.4

cpe:2.3:a:veritas:enterprise_vault:12.4
Veritas » Enterprise Vault » Version: 12.4.1

cpe:2.3:a:veritas:enterprise_vault:12.4.1
Veritas » Enterprise Vault » Version: 12.4.2

cpe:2.3:a:veritas:enterprise_vault:12.4.2
Veritas » Enterprise Vault » Version: 12.5

cpe:2.3:a:veritas:enterprise_vault:12.5
Veritas » Enterprise Vault » Version: 12.5.1

cpe:2.3:a:veritas:enterprise_vault:12.5.1
Veritas » Enterprise Vault » Version: 12.5.2

cpe:2.3:a:veritas:enterprise_vault:12.5.2
Veritas » Enterprise Vault » Version: 14.0

cpe:2.3:a:veritas:enterprise_vault:14.0
Veritas » Enterprise Vault » Version: 14.0.1

cpe:2.3:a:veritas:enterprise_vault:14.0.1
Veritas » Enterprise Vault » Version: 14.1

cpe:2.3:a:veritas:enterprise_vault:14.1
Veritas » Enterprise Vault » Version: 14.1.1

cpe:2.3:a:veritas:enterprise_vault:14.1.1
Veritas » Enterprise Vault » Version: 14.1.2

cpe:2.3:a:veritas:enterprise_vault:14.1.2
Veritas » Enterprise Vault » Version: 14.1.3

cpe:2.3:a:veritas:enterprise_vault:14.1.3
Veritas » Enterprise Vault » Version: 14.2

cpe:2.3:a:veritas:enterprise_vault:14.2
Veritas » Enterprise Vault » Version: 14.2.1

cpe:2.3:a:veritas:enterprise_vault:14.2.1
Veritas » Enterprise Vault » Version: 14.2.2

cpe:2.3:a:veritas:enterprise_vault:14.2.2
Veritas » Enterprise Vault » Version: 14.2.3

cpe:2.3:a:veritas:enterprise_vault:14.2.3
Veritas » Enterprise Vault » Version: 14.3

cpe:2.3:a:veritas:enterprise_vault:14.3
Veritas » Enterprise Vault » Version: 14.3.1

cpe:2.3:a:veritas:enterprise_vault:14.3.1
Veritas » Enterprise Vault » Version: 14.3.2

cpe:2.3:a:veritas:enterprise_vault:14.3.2
Veritas » Enterprise Vault » Version: 14.4

cpe:2.3:a:veritas:enterprise_vault:14.4
Veritas » Enterprise Vault » Version: 14.4.1

cpe:2.3:a:veritas:enterprise_vault:14.4.1
Veritas » Enterprise Vault » Version: 14.4.2

cpe:2.3:a:veritas:enterprise_vault:14.4.2
Veritas » Enterprise Vault » Version: 14.5

cpe:2.3:a:veritas:enterprise_vault:14.5
Veritas » Enterprise Vault » Version: 14.5.1

cpe:2.3:a:veritas:enterprise_vault:14.5.1
Veritas » Enterprise Vault » Version: 15.0

cpe:2.3:a:veritas:enterprise_vault:15.0
Veritas » Enterprise Vault » Version: 15.0.1

cpe:2.3:a:veritas:enterprise_vault:15.0.1
Veritas » Enterprise Vault » Version: 15.0.2

cpe:2.3:a:veritas:enterprise_vault:15.0.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-52944

Products

Pricing

Contact Us