Cross-Site Scripting Vulnerability in Central Dogma by Line
CVE-2024-1143

6.1MEDIUM

Key Information:

Vendor: Line Corporation
Status: Central Dogma
Vendor: CVE Published:; 2 February 2024

🔔 Create Line Corporation Vulnerability Alert

What is CVE-2024-1143?

Central Dogma versions prior to 0.64.1 are susceptible to a Cross-Site Scripting (XSS) vulnerability, which may enable attackers to exploit the system, leading to the leakage of user sessions and potential bypass of authentication mechanisms. This vulnerability emphasizes the importance of keeping software up to date to mitigate security risks.

Affected Version(s)

Central Dogma 0.63.3 < 0.64.1

References

https://github.com/line/centraldogma/security/advisories/...

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 2, 2024
Vulnerability Reserved
Feb 1, 2024