CVE-2024-9188

Specially constructed queries cause cross platform scripting leaking administrator tokens

CVSS v3 : HIGH

Vector :

Exploitability : 2.8 / Impact : 5.9

References

Link	Resource
https://www.arista.com/en/support/advisories-notices/security-advisory/20454-security-advisory-0105	Vendor Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:arista:ng_firewall:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2025-01-10 22:15

Updated : 2025-09-29 12:16

NVD link : CVE-2024-9188

Mitre link : CVE-2024-9188

CVE.ORG link : CVE-2024-9188

JSON object : View

Products Affected

arista

CWE

CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')