MindsDB: Stored XSS Vulnerability Affects Millions of Users
CVE-2024-3575

5.8MEDIUM

Key Information:

Vendor: Mindsdb
Status: Mindsdb/mindsdb
Vendor: CVE Published:; 16 April 2024

🔔 Create Mindsdb Vulnerability Alert

What is CVE-2024-3575?

Cross-site Scripting (XSS) - Stored in mindsdb/mindsdb

Affected Version(s)

mindsdb/mindsdb <= unspecified

References

https://huntr.com/bounties/5f720b48-ddeb-4f2a-830f-a3dd15...

CVSS V3.1

Score:

5.8

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 16, 2024
Vulnerability Reserved
Apr 10, 2024

.