CVE-2024-47854 MEDIUM

CVE-2024-47854

Vendor N/A
Product n/a
Published October 4, 2024
Last update October 17, 2025

CVSS base score

6.1/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction Required
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AC:L/AV:N/A:N/C:L/I:L/PR:N/S:C/UI:R

What the vulnerability does

01Description

An XSS vulnerability was discovered in Veritas Data Insight before 7.1. It allows a remote attacker to inject an arbitrary web script into an HTTP request that could reflect back to an authenticated user without sanitization if executed by that user.

Key dates

02Disclosure timeline

October 4, 2024 CVE published
October 17, 2025 Record updated