Описание
Improper Neutralization of Input During Web Page Generation (’Cross-site Scripting’) in RDT400 in SICK APU allows an unprivileged remote attacker to run arbitrary code in the clients browser via injecting code into the website.
Ссылки
- Vendor Advisory
- Vendor Advisory
- Product
- Vendor Advisory
- Vendor Advisory
- Product
Уязвимые конфигурации
Конфигурация 1Версия до 4.0.0.6 (исключая)
Одновременно
cpe:2.3:o:sick:apu0200_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:sick:apu0200:-:*:*:*:*:*:*:*
EPSS
Процентиль: 30%
0.00114
Низкий
7.1 High
CVSS3
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 7.1
github
больше 2 лет назад
Improper Neutralization of Input During Web Page Generation (’Cross-site Scripting’) in RDT400 in SICK APU allows an unprivileged remote attacker to run arbitrary code in the clients browser via injecting code into the website.
EPSS
Процентиль: 30%
0.00114
Низкий
7.1 High
CVSS3
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79