Kofax TotalAgility vulnerable to Reflected XSS Attacks
CVE-2024-7875

Currently unrated

Key Information:

Vendor

Tungsten Automation

Status
Totalagility
Vendor
CVE Published:
6 December 2024

What is CVE-2024-7875?

Tungsten Automation's TotalAgility is affected by a vulnerability that enables reflected Cross-Site Scripting (XSS) attacks. Through manipulation of the 'mfpScreenResolutionWidth' parameter in a form sent to the '/TotalAgility/Kofax/BrowserDevice/ScanFront.aspx' endpoint, attackers can inject malicious JavaScript code. This exploitation leads to the potential for information leakage. It is important to note that the successful execution of this attack is contingent upon the use of POST requests and requires the retrieval or generation of a proper VIEWSTATE parameter, which serves to limit the likelihood of an exploit occurring.

Affected Version(s)

TotalAgility 0 <= 7.9.0.25.0.954

References

https://www.tungstenautomation.com/products/totalagility
product
https://cert.pl/en/posts/2024/12/CVE-2024-7874
third-party-advisory
https://cert.pl/posts/2024/12/CVE-2024-7874
third-party-advisory

Timeline

  • Vulnerability published

Credit

Amin ACHOUR
Abderrahmane Bounhidja
.