CVE-2024-48197

Reflected XSS in AudioCodes MP-202b

[Description]

Cross Site Scripting vulnerability in Audiocodes MP-202b v.4.4.3 allows a remote attacker to escalate privileges via the login page of the web interface.

[Additional Information]

N/A

[Vulnerability Type]

Cross Site Scripting (XSS) Reflected

[Vendor of Product]

Audiocodes

[Affected Product Code Base]

MP-202b - 4.4.3

[Affected Component]

Login page of the web interface for the device

[Attack Type]

Remote

[Impact Escalation of Privileges]

true

[Attack Vectors]

A user must be coerced into logging into the application with a specially crafted URL supplied. The specially crafted URL can then be used to capture login details.

[Discovered By]

Gareth C - AnchorSec

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

CVE-2024-48197

[Description]

[Additional Information]

[Vulnerability Type]

[Vendor of Product]

[Affected Product Code Base]

[Affected Component]

[Attack Type]

[Impact Escalation of Privileges]

[Attack Vectors]

[Discovered By]

About

Releases

Packages

GCatt-AS/CVE-2024-48197

Folders and files

Latest commit

History

Repository files navigation

CVE-2024-48197

[Description]

[Additional Information]

[Vulnerability Type]

[Vendor of Product]

[Affected Product Code Base]

[Affected Component]

[Attack Type]

[Impact Escalation of Privileges]

[Attack Vectors]

[Discovered By]

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Packages