vulnerability

SUSE: CVE-2022-35133: SUSE Linux Security Advisory

Severity
6
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:N)
Published
Aug 17, 2022
Added
Dec 5, 2022
Modified
Jan 28, 2025

Description

A cross-site scripting (XSS) vulnerability in CherryTree v0.99.30 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name text field when creating a node.

Solution(s)

suse-upgrade-cherrytreesuse-upgrade-cherrytree-lang
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.