VYPR
Unrated severityNVD Advisory· Published Aug 9, 2019· Updated Sep 16, 2024

UAA SCIM Filter XSS

CVE-2019-11274

Description

Cloud Foundry UAA, versions prior to 74.0.0, is vulnerable to an XSS attack. A remote unauthenticated malicious attacker could craft a URL that contains a SCIM filter that contains malicious JavaScript, which older browsers may execute.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Cloudfoundry/Uaallm-fuzzy
    Range: <74.0.0
  • Cloud Foundry/UAA Release (OSS)v5
    Range: prior to v74.0.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.