CVE-2024-6449

HyperView Geoportal Toolkit in versions lower than 8.5.0 does not restrict cross-domain requests when fetching remote content pointed by one of GET request parameters. An unauthenticated remote attacker can prepare links, which upon opening will load scripts from a remote location controlled by the attacker and execute them in the user space. By manipulating this parameter it is also possible to enumerate some of the devices in Local Area Network in which the server resides.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:hyperview:geoportal_toolkit:*:*:*:*:*:*:*:*

History

12 Sep 2024, 15:32

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 6.5
CPE cpe:2.3:a:hyperview:geoportal_toolkit:*:*:*:*:*:*:*:*
First Time Hyperview geoportal Toolkit
Hyperview
References () https://cert.pl/en/posts/2024/08/CVE-2024-6449 - () https://cert.pl/en/posts/2024/08/CVE-2024-6449 - Third Party Advisory
References () https://cert.pl/posts/2024/08/CVE-2024-6449 - () https://cert.pl/posts/2024/08/CVE-2024-6449 - Third Party Advisory
CWE NVD-CWE-Other

06 Sep 2024, 13:15

Type Values Removed Values Added
Summary
  • (es) HyperView Geoportal Toolkit en las versiones 8.2.4 no restringe las solicitudes entre dominios cuando se obtiene contenido remoto indicado por uno de los parámetros de solicitud GET. Un atacante remoto no autenticado puede preparar enlaces que, al abrirse, cargarán scripts desde una ubicación remota controlada por el atacante y los ejecutarán en el espacio del usuario. Al manipular este parámetro, también es posible enumerar algunos de los dispositivos en la red de área local en la que reside el servidor.
Summary (en) HyperView Geoportal Toolkit in versions though 8.2.4 does not restrict cross-domain requests when fetching remote content pointed by one of GET request parameters. An unauthenticated remote attacker can prepare links, which upon opening will load scripts from a remote location controlled by the attacker and execute them in the user space. By manipulating this parameter it is also possible to enumerate some of the devices in Local Area Network in which the server resides. (en) HyperView Geoportal Toolkit in versions lower than 8.5.0 does not restrict cross-domain requests when fetching remote content pointed by one of GET request parameters. An unauthenticated remote attacker can prepare links, which upon opening will load scripts from a remote location controlled by the attacker and execute them in the user space. By manipulating this parameter it is also possible to enumerate some of the devices in Local Area Network in which the server resides.

28 Aug 2024, 12:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-08-28 12:15

Updated : 2024-09-12 15:32


NVD link : CVE-2024-6449

Mitre link : CVE-2024-6449

CVE.ORG link : CVE-2024-6449


JSON object : View

Products Affected

hyperview

  • geoportal_toolkit
CWE
NVD-CWE-Other CWE-942

Permissive Cross-domain Policy with Untrusted Domains