CVE-2024-41725

Опубликовано: 25 сент. 2024

Источник: nvd

CVSS3: 8.8

CVSS3: 6.1

EPSS Низкий

Описание

ProGauge MAGLINK LX CONSOLE does not have sufficient filtering on input fields that are used to render pages which may allow cross site scripting.

Конфигурация 1

Одновременно

cpe:2.3:o:doverfuelingsolutions:progauge_maglink_lx_console_firmware:*:*:*:*:*:*:*:*

Версия до 3.4.2.2.6 (включая)

cpe:2.3:h:doverfuelingsolutions:progauge_maglink_lx_console:-:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

cpe:2.3:o:doverfuelingsolutions:progauge_maglink_lx4_console_firmware:*:*:*:*:*:*:*:*

Версия до 4.17.9e (включая)

cpe:2.3:h:doverfuelingsolutions:progauge_maglink_lx4_console:-:*:*:*:*:*:*:*

EPSS

Процентиль: 31%

0.00114

Низкий

8.8 High

CVSS3

6.1 Medium

CVSS3

CWE-79

GHSA-697p-23gh-47wj

CVSS3: 8.8

github

больше 1 года назад

ProGauge MAGLINK LX CONSOLE does not have sufficient filtering on input fields that are used to render pages which may allow cross site scripting.

EPSS

Процентиль: 31%

0.00114

Низкий

8.8 High

CVSS3

6.1 Medium

CVSS3

CWE-79