CVE-2024-50705 – Unauthenticated reflected cross-site scripting ... (How to Fix)

Q: What is the severity of CVE-2024-50705?

CVE-2024-50705 has a CVSS score of 7.1 (HIGH). Unauthenticated reflected cross-site scripting (XSS) vulnerability in Uniguest Tripleplay allows remote attackers to inject and execute arbitrary scripts via the page parameter, potentially compromising user sessions and data. This affects all systems running Uniguest Tripleplay versions before 24.2.1, particularly those exposed to untrusted networks.

📋 TL;DR

Unauthenticated reflected cross-site scripting (XSS) vulnerability in Uniguest Tripleplay allows remote attackers to inject and execute arbitrary scripts via the page parameter, potentially compromising user sessions and data. This affects all systems running Uniguest Tripleplay versions before 24.2.1, particularly those exposed to untrusted networks.

💻 Affected Systems

Products:

Uniguest Tripleplay

Versions: All versions before 24.2.1

Operating Systems: Not specified; likely cross-platform as it's a software application

Default Config Vulnerable: ⚠️ Yes

Notes: Vulnerability is present in default configurations due to improper handling of the page parameter; no special settings required for exploitation.

📦 What is this software?

Tripleplay by Uniguest

View all CVEs affecting Tripleplay →

Tripleplay by Uniguest

View all CVEs affecting Tripleplay →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers steal session cookies or credentials, perform actions as authenticated users, and potentially pivot to internal systems, leading to data breaches or full system compromise.

🟠

Likely Case

Attackers execute malicious scripts in users' browsers to hijack sessions, deface websites, or redirect users to phishing sites, causing reputational damage and data loss.

🟢

If Mitigated

With proper input validation and output encoding, the vulnerability is neutralized, preventing script execution and maintaining system integrity.

🌐 Internet-Facing: HIGH, as the vulnerability is unauthenticated and can be exploited remotely via crafted URLs, making internet-facing systems prime targets.

🏢 Internal Only: MEDIUM, as internal users could still be tricked into clicking malicious links, but network segmentation may reduce exposure.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Exploitation is straightforward via crafted URLs; no authentication required, making it easy for attackers to target users.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 24.2.1

Vendor Advisory: https://uniguest.com/cve-bulletins/

Restart Required: Yes

Instructions:

1. Download the patch from the vendor advisory. 2. Backup current configuration. 3. Apply the update to Uniguest Tripleplay. 4. Restart the service or system as required. 5. Verify the fix by testing the page parameter.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Implement server-side validation to sanitize the page parameter, rejecting or encoding malicious input.

Not applicable; requires code changes in the application.

Web Application Firewall (WAF) Rules

all

Deploy WAF rules to block requests containing suspicious scripts in the page parameter.

Not applicable; configure via WAF management interface.

🧯 If You Can't Patch

Implement strict Content Security Policy (CSP) headers to mitigate script execution risks.
Restrict access to the vulnerable application using network segmentation or IP whitelisting.

🔍 How to Verify

Check if Vulnerable:

Test by accessing the application with a crafted URL containing a script in the page parameter (e.g., ?page=<script>alert('test')</script>) and check if the script executes.

Check Version:

Check the application version via its admin interface or configuration files; refer to vendor documentation for specific commands.

Verify Fix Applied:

After patching, repeat the test with the same crafted URL; the script should not execute, and input should be sanitized or blocked.

📡 Detection & Monitoring

Log Indicators:

Log entries showing requests with suspicious scripts in the page parameter, unusual user-agent strings, or error messages related to input validation.

Network Indicators:

HTTP requests containing <script> tags or encoded payloads in the page parameter, often from external IPs.

SIEM Query:

Example: source="web_logs" AND (url CONTAINS "page=<script>" OR url CONTAINS "page=%3Cscript%3E")

📊 Metadata

CVE ID: CVE-2024-50705

CVSS v3 Score: 7.1 (HIGH)

CVSS Vector: CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-352

EPSS Score: 0.05% exploit probability (13.5th percentile)

Published: March 4, 2025

Last Updated: May 21, 2025

🔗 References

https://uniguest.com/cve-bulletins/ Vendor Advisory
https://uniguest.com/wp-content/uploads/2025/02/CVE-2024-50705-Vulnerability-Summary.pdf Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-50705, you might also want to check these: