CVE-2022-35632

The Velociraptor GUI contains an editor suggestion feature that can display the description field of a VQL function, plugin or artifact. This field was not properly sanitized and can lead to cross-site scripting (XSS). This issue was resolved in Velociraptor 0.6.5-2.
Configurations

Configuration 1

cpe:2.3:a:rapid7:velociraptor:*:*:*:*:*:*:*:*

Information

Published : 2022-07-29 05:15

Updated : 2022-08-04 11:37


NVD link : CVE-2022-35632

Mitre link : CVE-2022-35632

Products Affected
CWE