CVE-2017-15009: XSS
First published: Wed Oct 04 2017(Updated: )
PRTG Network Monitor version 17.3.33.2830 is vulnerable to reflected Cross-Site Scripting on error.htm (the error page), via the errormsg parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Paessler PRTG Traffic Grapher | =17.3.33.2830 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2017-15009?
CVE-2017-15009 is classified as a medium severity vulnerability due to the potential for reflected Cross-Site Scripting attacks.
How do I fix CVE-2017-15009?
To fix CVE-2017-15009, upgrade PRTG Network Monitor to a version later than 17.3.33.2830 that addresses this vulnerability.
What type of vulnerability is CVE-2017-15009?
CVE-2017-15009 is a reflected Cross-Site Scripting vulnerability found in the error page of PRTG Network Monitor.
What impact does CVE-2017-15009 have on users?
Users of PRTG Network Monitor can be affected by malicious scripts, potentially leading to unauthorized actions executed in user sessions.
Which software versions are affected by CVE-2017-15009?
CVE-2017-15009 specifically affects PRTG Network Monitor version 17.3.33.2830.
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/references
- agent/severity
- agent/author
- agent/weakness
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/paessler
- canonical/paessler prtg traffic grapher
- version/paessler prtg traffic grapher/17.3.33.2830