HyperView Geoportal Toolkit in versions lower than 8.5.0 does not restrict cross-domain requests when fetching remote content pointed by one of GET request parameters.
An unauthenticated remote attacker can prepare links, which upon opening will load scripts from a remote location controlled by the attacker and execute them in the user space.
By manipulating this parameter it is also possible to enumerate some of the devices in Local Area Network in which the server resides.
References
Link | Resource |
---|---|
https://cert.pl/en/posts/2024/08/CVE-2024-6449 | Third Party Advisory |
https://cert.pl/posts/2024/08/CVE-2024-6449 | Third Party Advisory |
Configurations
History
12 Sep 2024, 15:32
Type | Values Removed | Values Added |
---|---|---|
First Time |
Hyperview
Hyperview geoportal Toolkit |
|
CWE | NVD-CWE-Other | |
CPE | cpe:2.3:a:hyperview:geoportal_toolkit:*:*:*:*:*:*:*:* | |
References | () https://cert.pl/en/posts/2024/08/CVE-2024-6449 - Third Party Advisory | |
References | () https://cert.pl/posts/2024/08/CVE-2024-6449 - Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
06 Sep 2024, 13:15
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
|
Summary | (en) HyperView Geoportal Toolkit in versions lower than 8.5.0 does not restrict cross-domain requests when fetching remote content pointed by one of GET request parameters. An unauthenticated remote attacker can prepare links, which upon opening will load scripts from a remote location controlled by the attacker and execute them in the user space. By manipulating this parameter it is also possible to enumerate some of the devices in Local Area Network in which the server resides. |
28 Aug 2024, 12:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-08-28 12:15
Updated : 2024-09-12 15:32
NVD link : CVE-2024-6449
Mitre link : CVE-2024-6449
CVE.ORG link : CVE-2024-6449
JSON object : View
Products Affected
hyperview
- geoportal_toolkit
CWE