NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2023-32192

Summary	A vulnerability has been identified in which unauthenticated cross-site scripting (XSS) in the API Server's public API endpoint can be exploited, allowing an attacker to execute arbitrary JavaScript code in the victim browser
Publication Date	Oct. 16, 2024, 10:15 p.m.
Registration Date	Oct. 17, 2024, 5 a.m.
Last Update	Oct. 17, 2024, 1:38 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://bugzilla.suse.com/show_bug.cgi?id=CVE-2023-32192
2	https://github.com/rancher/apiserver/security/advisories/GHSA-833m-37f7-jq55

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-80	クロスサイトスクリプティング (Basic XSS)	https://cwe.mitre.org/data/definitions/80.html