CVE-2024-30053 : Azure Migrate Cross-Site Scripting Vulnerability

Dies ist die zwischengespeicherte Version der Seite für https://www.cvedetails.com/cve/CVE-2024-30053/

Unten ist eine Momentaufnahme der Seite angezeigt, wie sie am 31.05.2024 angezeigt wurde (das letzte Datum, an dem unser Crawler sie besucht hat). Es handelt sich um die Version der Seite, die für das Ranking Ihrer Suchergebnisse verwendet wurde. Die Seite hat sich möglicherweise seit der letzten Zwischenspeicherung geändert. Damit Sie sehen können, was sich geändert hat (ohne die Markierungen), navigieren Sie zur aktuellen Seite.

Bing ist nicht für den Inhalt dieser Seite verantwortlich.

Azure Migrate Cross-Site Scripting Vulnerability

Published 2024-05-14 17:17:22

Updated 2024-05-14 19:17:56

Source Microsoft Corporation

View at NVD, CVE.org

Vulnerability category: Cross site scripting (XSS)

Exploit prediction scoring system (EPSS) score for CVE-2024-30053

EPSS FAQ

0.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 17 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2024-30053

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
6.5	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N	2.8	3.6	Microsoft Corporation	2024-05-14
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None
6.5	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/...	N/A	N/A	MS-CVE-2024-30053	2024-05-14
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

CWE ids for CVE-2024-30053

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Assigned by: secure@microsoft.com (Secondary)

References for CVE-2024-30053

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-30053

CVE-2024-30053 - Security Update Guide - Microsoft - Azure Migrate Cross-Site Scripting Vulnerability

Products affected by CVE-2024-30053

The following product & version information is provided by CVEdetails.com. We provide product & version information for most CVEs even if they are not available from NVD.

Microsoft » Azure Migrate
Versions from including (>=) 1.0.0 and before (<) 6.1.294.1008
cpe:2.3:a:microsoft:azure_migrate:*:*:*:*:*:*:*:*
Matching versions

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

Vulnerability Details : CVE-2024-30053

Exploit prediction scoring system (EPSS) score for CVE-2024-30053

CVSS scores for CVE-2024-30053

CWE ids for CVE-2024-30053

References for CVE-2024-30053

Products affected by CVE-2024-30053