{"uuid": "7ddaf2d2-0df8-4f0f-aeeb-685e50709981", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "RHSA-2024:8534", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/271", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-10033\n\ud83d\udd39 Description: A vulnerability was found in aap-gateway. A Cross-site Scripting (XSS) vulnerability exists in the gateway component. This flaw allows a malicious user to perform actions that impact users by using the \"?next=\" in a URL, which can lead to redirecting, injecting malicious script, stealing sessions and data.\n\ud83d\udccf Published: 2024-10-16T16:59:43.968Z\n\ud83d\udccf Modified: 2025-01-06T22:01:25.224Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2024:8534\n2. https://access.redhat.com/security/cve/CVE-2024-10033\n3. https://bugzilla.redhat.com/show_bug.cgi?id=2319162", "creation_timestamp": "2025-01-06T22:38:18.000000Z"}