HomePentest-Tools.com Logo

Ellucian Ethos Identity CAS - Cross-Site Scripting CVE-2023-2822

Severity
CVSSv3 Score
6.1
Vulnerability description

A vulnerability was found in Ellucian Ethos Identity up to 5.10.5. It has been classified as problematic. Affected is an unknown function of the file /cas/logout. The manipulation of the argument url leads to cross site scripting. It is possible to launch the attack remotely.\n

Risk description

No risk description to display.

Recommendation

Upgrading to version 5.10.6 is able to address this issue. It is recommended to upgrade the affected component.

Codename
Not available
Detectable with
Network Scanner
Scan engine
Nuclei
Exploitable with Sniper
No
CVE Published
May 20, 2023
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available