CVE-2024-37629

Risk Scores

Affected Products

Exploit Intelligence

• https://github.com/summernote/summernote/issues/4642 (nist-nvd)
• https://grumpz.net/cve-2024-37629-simple-xss-payload-exploits-0day-vulnerability-in-10000-web-apps (nist-nvd)
• https://github.com/summernote/summernote/releases/tag/v0.9.1 (circl)

Timeline

• Jun 12, 2024 CVE Published
• Jun 13, 2024 EPSS Score
• Jul 6, 2024 EPSS Score
• Jul 29, 2024 EPSS Score
• Aug 21, 2024 EPSS Score
• Sep 13, 2024 EPSS Score
• Oct 4, 2024 Coalition ESS Score
• Oct 6, 2024 EPSS Score
• Oct 29, 2024 EPSS Score
• Nov 21, 2024 EPSS Score
• Dec 14, 2024 EPSS Score
• Jan 6, 2025 EPSS Score

References

• https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0504.json advisory
• https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0504 advisory
• https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0119678 advisory