CVE-2024-9427
CVSS 3.1 Score 5.4 of 10 (medium)
Details
Published Dec 24, 2024
CWE ID 116
Summary
CVE-2024-9427 is a newly disclosed vulnerability affecting the Koji platform. Maliciously crafted inputs can result in Cross-Site Scripting (XSS) attacks, allowing unauthorized JavaScript code execution. Despite existing XSS protections, this issue poses a potential risk. A malicious link can reflect its code into the resulting web page, but it's unlikely that attackers can submit actions or make changes to Koji due to existing safeguards.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share