Medium severity5.4NVD Advisory· Published Jul 18, 2022· Updated Jun 17, 2026
CVE-2022-24692
CVE-2022-24692
Description
An issue was discovered in DSK DSKNet 2.16.136.0 and 2.17.136.5. The new menu option within the general Parameters page is vulnerable to stored XSS. The attacker can create a menu option, make it visible to every application user, and conduct session hijacking, account takeover, or malicious code delivery, with the final goal of achieving client-side code execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- DSK/DSKNetdescription
Patches
Vulnerability mechanics
References
2- github.com/post-cyberlabs/CVE-Advisory/blob/main/CVE-2022-24688-92.pdfnvdExploitThird Party Advisory
- dsk.lu/fr/produits/temps-de-presencenvdProduct
News mentions
0No linked articles in our index yet.