CVE-2024-2391

CVSS 3.1 Score 2.4 of 10 (low)

Details

Published Mar 12, 2024
Updated: Mar 21, 2024
CWE ID 79

Summary

CVE-2024-2391 is a vulnerability found in EVE-NG 5.0.1-13 that affects the Lab Handler component, leading to cross-site scripting. This vulnerability allows for remote attacks and has been publicly disclosed, with an identifier of VDB-256442. The vendor has been notified but did not respond. The base severity of this vulnerability is low, with a base score of 2.4 according to CVSS:3.1. The exploitability score is 0.9, and high privileges are required with user interaction needed for the attack. The impact score is 1.4, indicating a potential risk to organizations using this product.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-2391 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options