Werk #15713: NagVis: Updated to 1.9.38
| Component | Other components | ||||||
| Title | NagVis: Updated to 1.9.38 | ||||||
| Date | Oct 14, 2023 | ||||||
| Level | Trivial Change | ||||||
| Class | Security Fix | ||||||
| Compatibility | Compatible - no manual interaction needed | ||||||
| Checkmk versions & editions |
|
NagVis 1.9.38 fixes a XSS issue
Vulnerability Management: We have rated the issue with a CVSS Score of 8.4 (High) with the following CVSS vector: CVSS: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H 8.4.
CVE-2023-46287 was assigned to this issue.
Changes: This Werk introduces escaping for the vulnerable parameter.