{"vulnerability": "CVE-2022-3339", "sightings": [{"uuid": "ef057185-36d6-4703-9f11-98b7c4fa6790", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3339", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/15584", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-3339\n\ud83d\udd25 CVSS Score: 5.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N)\n\ud83d\udd39 Description: A reflected cross-site scripting (XSS) vulnerability in ePO prior to 5.10 Update 14 allows a remote unauthenticated attacker to potentially obtain access to an ePO administrator's session by convincing the authenticated ePO administrator to click on a carefully crafted link. This would lead to limited access to sensitive information and limited ability to alter some information in ePO.\n\ud83d\udccf Published: 2022-10-18T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-08T17:24:54.809Z\n\ud83d\udd17 References:\n1. https://kcm.trellix.com/corporate/index?page=content&id=SB10387", "creation_timestamp": "2025-05-08T18:24:30.000000Z"}]}