Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-41139

Disclosure Date: October 17, 2022 (last updated February 24, 2025)
MITRE CALDERA 4.1.0 allows stored XSS via app.contact.gist (aka the gist contact configuration field), leading to execution of arbitrary commands on agents.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0