Back

CVE-2024-45176

Sept. 5, 2024, 5:44 p.m.

Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.

Products

C-MOR Video Surveillance

  • 5.2401

Source

cve@mitre.org

Tags

cve@mitre.org
2024-09-05
CVE-2024-45176

CVE-2024-45176 details

Published : Sept. 5, 2024, 4:15 p.m.
Last Modified : Sept. 5, 2024, 5:44 p.m.

Description

An issue was discovered in za-internet C-MOR Video Surveillance 5.2401. Due to improper input validation, the C-MOR web interface is vulnerable to reflected cross-site scripting (XSS) attacks. It was found out that different functions are prone to reflected cross-site scripting attacks due to insufficient user input validation.

CVSS Score

1 2 3 4 5 6 7 8 9 10

Weakness

Weakness Name Description

References

URL Source
https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-020.txt cve@mitre.org
https://www.syss.de/pentest-blog/mehrere-sicherheitsschwachstellen-in-videoueberwachungssoftware-c-mor-syss-2024-020-bis-030 cve@mitre.org
This website uses the NVD API, but is not approved or certified by it.