Описание
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V3.0). The affected application uses a Content Security Policy that allows unsafe script execution methods. This could allow an attacker to execute unauthorized scripts, potentially leading to cross-site scripting attacks.
EPSS
7.4 High
CVSS3
Дефекты
Связанные уязвимости
A vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V3.0). The affected application uses a Content Security Policy that allows unsafe script execution methods. This could allow an attacker to execute unauthorized scripts, potentially leading to cross-site scripting attacks.
Уязвимость программного средства мониторинга и анализа сетевого трафика в промышленных сетях SINEC Traffic Analyzer, связанная с наличием нерелевантного кода, позволяющая нарушителю проводить атаки межсайтового скриптинга (XSS)
EPSS
7.4 High
CVSS3