{"uuid": "5af42887-8886-4d3c-8a5c-125a6664bd31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-26156", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2163", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-26156\n\ud83d\udd39 Description: All versions of ETIC Telecom Remote Access Server (RAS) prior to 4.5.0 \nare vulnerable to reflected cross site scripting (XSS) attacks in the \nmethod parameter. The ETIC RAS web server uses dynamic pages that gets \ntheir input from the client side and reflects the input in its response \nto the client.\n\ud83d\udccf Published: 2025-01-17T16:12:26.288Z\n\ud83d\udccf Modified: 2025-01-17T16:12:26.288Z\n\ud83d\udd17 References:\n1. https://www.cisa.gov/news-events/ics-advisories/icsa-22-307-01", "creation_timestamp": "2025-01-17T16:57:03.000000Z"}