cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-8348,https://securityvulnerability.io/vulnerability/CVE-2020-8348,DOM-based XSS Vulnerability in Lenovo Enterprise Network Disk,"A security vulnerability exists within Lenovo's Enterprise Network Disk that permits a DOM-based cross-site scripting (XSS) attack. This flaw, found in versions prior to 6.1 patch 6 hotfix 4, could allow an attacker to execute arbitrary code within the browser session of an authenticated user if they are tricked into visiting a specially crafted URL. Users are advised to exercise caution against potential phishing attempts that exploit this vulnerability.",Lenovo,Enterprise Network Disk,6.1,MEDIUM,0.0007099999929778278,false,,false,false,false,,,false,false,,2020-09-24T21:05:28.000Z,0
CVE-2020-8347,https://securityvulnerability.io/vulnerability/CVE-2020-8347,Reflective Cross-Site Scripting Vulnerability in Lenovo Enterprise Network Disk,"A reflective cross-site scripting (XSS) vulnerability was identified in Lenovo Enterprise Network Disk. If an authenticated user visits a maliciously crafted URL, this vulnerability could allow an attacker to execute arbitrary code within the user's browser. This risk may be exploited through phishing schemes, making it imperative for users to stay vigilant and ensure their software is updated to the latest version to mitigate potential threats.",Lenovo,Enterprise Network Disk,6.1,MEDIUM,0.0007099999929778278,false,,false,false,false,,,false,false,,2020-09-24T21:05:27.000Z,0