A vulnerability classified as problematic was found in Nautobot up to 1.6.21/2.2.3. Affected by this vulnerability is an unknown functionality of the file /admin/constance/config/. The manipulation of the argument BANNER_TOP/BANNER_BOTTOM/BANNER_LOGIN leads to cross site scripting.
This vulnerability is known as CVE-2024-34707. The attack can be launched remotely. There is no exploit available.
It is recommended to upgrade the affected component.