PT-2025-29769 · Eclipse · Eclipse Glassfish

Claudia Bartolini

Published

2025-07-16

Updated

2025-07-16

CVE-2024-10031

CVSS v4.0

5.8

Vector

AV:L/AC:H/AT:N/PR:H/UI:P/VC:L/VI:H/VA:N/SC:H/SI:H/SA:N

Name of the Vulnerable Software and Affected Versions:

Eclipse GlassFish version 7.0.15

Description:

Eclipse GlassFish version 7.0.15 is susceptible to Stored Cross-site Scripting attacks. The attacks can be performed by modifying the configuration file within the underlying operating system.

Recommendations:

Modify the configuration file to prevent the injection of malicious scripts.

Fix

XSS

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2024-10031

Affected Products

Eclipse Glassfish

PT-2025-29769 · Eclipse · Eclipse Glassfish

Weakness Enumeration

Related Identifiers

Affected Products

References · 3