CVE-2023-49950

Exploit

EPSS 0.18%
Veröffentlicht 03.02.2024 09:15:11
Zuletzt bearbeitet 17.06.2025 16:15:25
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

The Jinja templating in Logpoint SIEM 6.10.0 through 7.x before 7.3.0 does not correctly sanitize log data being displayed when using a custom Jinja template in the Alert view. A remote attacker can craft a cross-site scripting (XSS) payload and send it to any system or device that sends logs to the SIEM. If an alert is created, the payload will execute upon the alert data being viewed with that template, which can lead to sensitive data disclosure.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Logpoint ≫ Siem Version >= 6.10.0 < 7.3.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.18%	0.402

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.4	2.3	2.7	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
134c704f-9b21-4f2e-91b3-4a467353bcc0	5.4	2.3	2.7	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

https://github.com/shrikeinfosec/cve-2023-49950/blob/main/cve-2023-49950.md

Exploit

https://servicedesk.logpoint.com/hc/en-us/articles/14124495377437-Stored-XSS-Vulnerability-in-Alerts-via-Log-Injection

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2023-49950

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-49950

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-49950

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2023-49950