{"uuid": "861d9180-e9dc-4611-85f0-fec88bdc6a29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52882", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3819", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-52882\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue was discovered in AudioCodes One Voice Operations Center (OVOC) before 8.4.582. Due to improper neutralization of input via the devices API, an attacker can inject malicious JavaScript code (XSS) to attack logged-in administrator sessions.\n\ud83d\udccf Published: 2025-02-07T18:31:21Z\n\ud83d\udccf Modified: 2025-02-07T18:31:21Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-52882\n2. https://www.audiocodes.com/solutions-products/products/management-products-solutions/one-voice-operations-center\n3. https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-076.txt", "creation_timestamp": "2025-02-07T19:04:15.000000Z"}