Description
A stored Cross-Site Scripting (XSS) vulnerability in OPSWAT MetaDefender ICAP Server before 4.13.0 allows attackers to execute arbitrary JavaScript or HTML because of the blocked page response.
Published: 2022-09-19
Score: 5.4 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

No analysis available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2022-44044 A stored Cross-Site Scripting (XSS) vulnerability in OPSWAT MetaDefender ICAP Server before 4.13.0 allows attackers to execute arbitrary JavaScript or HTML because of the blocked page response.
History

Wed, 16 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00494}

 epss

{'score': 0.00499}

Subscriptions

Opswat Metadefender
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-03T12:28:42.599Z

Reserved: 2022-09-18T00:00:00.000Z

Link: CVE-2022-40778

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-09-19T07:15:08.383

Modified: 2024-11-21T07:22:02.923

Link: CVE-2022-40778

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses