CVE-2024-32862

Name of the Vulnerable Software and Affected Versions ExacqVision Web Services (affected versions not specified)

Description The issue is related to the ExacqVision Web Services, which under certain circumstances does not provide sufficient protection from untrusted domains. This is due to incorrect handling of the HTTP Origin header in the Cross-Origin Resource Sharing (CORS) mechanism of the exacqVision Web Service system. Exploitation of this issue may allow a remote attacker to bypass security restrictions and perform cross-site scripting attacks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.