Logpoint · Logpoint · CVE-2024-33859
**Name of the Vulnerable Software and Affected Versions**
Logpoint versions prior to 7.4.0
**Description**
An issue was discovered where HTML code sent through logs wasn't being escaped in the "Interesting Field" Web UI, leading to XSS.
**Recommendations**
For versions prior to 7.4.0, update to version 7.4.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the "Interesting Field" Web UI to minimize the risk of exploitation.