Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-4239-64c9-rvg2

Опубликовано: 17 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Cross-site scripting (XSS) vulnerability in the integrated web server on the Siemens Climatix BACnet/IP communication module with firmware before 10.34 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

Cross-site scripting (XSS) vulnerability in the integrated web server on the Siemens Climatix BACnet/IP communication module with firmware before 10.34 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

Ссылки

EPSS

Процентиль: 74%
0.00819
Низкий

CVE ID

CVE-2015-4174

Дефекты

CWE-79

Связанные уязвимости

nvd логотип

CVE-2015-4174

nvd
больше 10 лет назад

Cross-site scripting (XSS) vulnerability in the integrated web server on the Siemens Climatix BACnet/IP communication module with firmware before 10.34 allows remote attackers to inject arbitrary web script or HTML via a crafted URL.

EPSS

Процентиль: 74%
0.00819
Низкий

CVE ID

CVE-2015-4174

Дефекты

CWE-79