Robustification of Language Replacement in the Mindbreeze Client (MINDBREEZE29379)

ID: MINDBREEZE29379 
Affected Components: Mindbreeze InSpire SaaS, Mindbreeze InSpire    
Severity: 2.7 LOW 
Status: Final 
First published: December 20, 2024  
CVEs: MINDBREEZE29379 

Summary

• Possible XSS in LanguageReplacementVariables of the Client 

   

Hotfix Information 

Fixed with following versions of Mindbreeze InSpire On-Premises or Mindbreeze InSpire SaaS: 

• Mindbreeze InSpire SaaS Release 24.8  
• Mindbreeze InSpire 24.8 Release