NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2023-32193

Summary	A vulnerability has been identified in which unauthenticated cross-site scripting (XSS) in Norman's public API endpoint can be exploited. This can lead to an attacker exploiting the vulnerability to trigger JavaScript code and execute commands remotely.
Publication Date	Oct. 16, 2024, 10:15 p.m.
Registration Date	Oct. 17, 2024, 5 a.m.
Last Update	Oct. 17, 2024, 1:38 a.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://bugzilla.suse.com/show_bug.cgi?id=CVE-2023-32193
2	https://github.com/rancher/norman/security/advisories/GHSA-r8f4-hv23-6qp6

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-80	クロスサイトスクリプティング (Basic XSS)	https://cwe.mitre.org/data/definitions/80.html