Low severity3.5NVD Advisory· Published Nov 28, 2024· Updated Jun 17, 2026
CVE-2024-49502
CVE-2024-49502
Description
A Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in the Setup Wizard, HTTP Proxy credentials pane in spacewalk-web allows attackers to attack users by providing specially crafted URLs to click. This issue affects Container suse/manager/5.0/x86_64/server:5.0.2.7.8.1: before 5.0.15-150600.3.10.2; SUSE Manager Server Module 4.3: before 4.3.42-150400.3.52.1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
36- osv-coords34 versionspkg:rpm/suse/cobbler&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/grafana-formula&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/inter-server-sync&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/mgr-daemon&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/release-notes-susemanager&distro=SUSE%20Manager%20Server%204.3pkg:rpm/suse/release-notes-susemanager-proxy&distro=SUSE%20Manager%20Proxy%204.3pkg:rpm/suse/saltboot-formula&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacecmd&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-backend&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacewalk-backend&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-certs-tools&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacewalk-certs-tools&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-client-tools&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacewalk-client-tools&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-config&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-java&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-proxy&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacewalk-utils&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/spacewalk-web&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager-build-keys&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/susemanager-build-keys&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager-docs_en&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager-schema&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager-sls&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/susemanager-sync-data&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/uyuni-common-libs&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/uyuni-common-libs&distro=SUSE%20Manager%20Server%20Module%204.3pkg:rpm/suse/uyuni-proxy-systemd-services&distro=SUSE%20Manager%20Client%20Tools%2015pkg:rpm/suse/uyuni-proxy-systemd-services&distro=SUSE%20Manager%20Client%20Tools%20for%20SLE%20Micro%205pkg:rpm/suse/uyuni-proxy-systemd-services&distro=SUSE%20Manager%20Proxy%20Module%204.3pkg:rpm/suse/uyuni-reportdb-schema&distro=SUSE%20Manager%20Server%20Module%204.3
< 3.3.3-150400.5.52.3+ 33 more
- (no CPE)range: < 3.3.3-150400.5.52.3
- (no CPE)range: < 0.11.0-150400.3.21.4
- (no CPE)range: < 0.3.5-150400.3.36.13
- (no CPE)range: < 4.3.11-150400.3.21.6
- (no CPE)range: < 4.3.14-150400.3.122.1
- (no CPE)range: < 4.3.14-150400.3.90.1
- (no CPE)range: < 0.1.1723628891.ffb1da5-150400.3.18.4
- (no CPE)range: < 4.3.29-150400.3.42.8
- (no CPE)range: < 4.3.29-150400.3.42.8
- (no CPE)range: < 4.3.30-150400.3.47.16
- (no CPE)range: < 4.3.30-150400.3.47.16
- (no CPE)range: < 4.3.26-150400.3.36.7
- (no CPE)range: < 4.3.26-150400.3.36.7
- (no CPE)range: < 4.3.21-150400.3.33.11
- (no CPE)range: < 4.3.21-150400.3.33.11
- (no CPE)range: < 4.3.14-150400.3.18.6
- (no CPE)range: < 4.3.82-150400.3.96.1
- (no CPE)range: < 4.3.19-150400.3.29.9
- (no CPE)range: < 4.3.22-150400.3.29.2
- (no CPE)range: < 4.3.42-150400.3.52.1
- (no CPE)range: < 4.3.42-150400.3.52.1
- (no CPE)range: < 15.4.10-150400.3.29.4
- (no CPE)range: < 15.4.10-150400.3.29.4
- (no CPE)range: < 4.3.39-150400.3.58.5
- (no CPE)range: < 4.3.14-150400.9.66.2
- (no CPE)range: < 4.3.27-150400.3.45.11
- (no CPE)range: < 4.3.45-150400.3.55.4
- (no CPE)range: < 4.3.21-150400.3.35.2
- (no CPE)range: < 4.3.11-150400.3.21.6
- (no CPE)range: < 4.3.11-150400.3.21.6
- (no CPE)range: < 4.3.14-150000.1.27.4
- (no CPE)range: < 4.3.14-150000.1.27.4
- (no CPE)range: < 4.3.14-150000.1.27.4
- (no CPE)range: < 4.3.11-150400.3.18.12
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.