CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Paloaltonetworks: >> Prisma Cloud >> 31.03.109 Security Vulnerabilities

CVE-2024-5906

A cross-site scripting (XSS) vulnerability in Palo Alto Networks Prisma Cloud Compute software enables a malicious administrator with add/edit permissions for identity providers to store a JavaScript payload using the web interface on Prisma Cloud Compute. This enables a malicious administrator to perform actions in the context of another user's browser when accessed by that other user.

CVSS Score

4.8

EPSS Score

0.002

Published

2024-06-12

Page 1

Vulnerabilities

Vulnerable Software

Paloaltonetworks: >> Prisma Cloud >> 31.03.109 Security Vulnerabilities

Products

Pricing

Contact Us