Critical XSS Vulnerability in FireEye Central Management v9.1.1.956704: Session Hijacking Exploit

CVE-2024-0314 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

XSS vulnerability in FireEye Central Management affecting version 9.1.1.956704, which could allow an attacker to modify special HTML elements in the application and cause a reflected XSS, leading to a session hijacking.

Learn more about our Web Application Penetration Testing UK.