CVE-2024-34923
MEDIUMAvocent DSR2030/SVIP1020 <3.07.01.23/<1.07.00.00 - XSS
Title source: llmDescription
In Avocent DSR2030 Appliance firmware 03.04.00.07 before 03.07.01.23, and SVIP1020 Appliance firmware 01.06.00.03 before 01.07.00.00, there is reflected cross-site scripting (XSS).
References (2)
Core 2
Core References
Various Sources
https://ka1ne1.github.io/avocent_xss.html
Scores
CVSS v3
6.1
EPSS
0.0026
EPSS Percentile
16.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-79
Status
published
Published
May 27, 2024
Tracked Since
Feb 18, 2026