CVE-2024-22477
low
ForgeRock CVSS v3 Base Score
1.8
CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:N
Attack Characteristics
Attack Vector
Adjacent
Attack Complexity
High
Privileges Required
High
User Interaction
Required
Confidentiality
None
Integrity
Low
Availability
None
Published: July 9, 2024 (673 days ago)
Last Modified: November 21, 2024
Vendor: ForgeRock
Source: NVD
Vulnerability Report
Generated by CyberWatcher
Description
A cross-site scripting vulnerability exists in the admin console OIDC Policy Management Editor. The impact is contained to admin console users only.