CVE-2024-22854

Published: 2024-02-16T09:15Z

Last Modified: 2025-01-13T14:37Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

DOM-based HTML injection vulnerability in the main page of Darktrace Threat Visualizer version 6.1.27 (bundle version 61050) and before has been identified. A URL, crafted by a remote attacker and visited by an authenticated user, allows open redirect and potential credential stealing using an injected HTML form. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt