CVE-2024-2479

Name of the Vulnerable Software and Affected Versions MHA Sistemas arMHAzena version 9.6.0.0

Description A problematic vulnerability has been found in the Cadastro Page component, allowing for cross-site scripting through the manipulation of the Query argument. This issue can be exploited remotely. The vendor was contacted about this disclosure but did not respond.

Recommendations For version 9.6.0.0, as a temporary workaround, consider restricting access to the Cadastro Page component until a patch is available. Avoid using the Query argument in affected areas until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.