| |
Podatność CVE-2023-3526
Publikacja: 2023-08-08
Opis: |
In PHOENIX CONTACTs TC ROUTER and TC CLOUD CLIENT in versions prior to 2.07.2 as well as CLOUD CLIENT 1101T-TX/TX prior to 2.06.10 an unauthenticated remote attacker could use a reflective XSS within the license viewer page of the devices in order to execute code in the context of the user's browser. |
W naszej bazie, znaleźliśmy następujące noty dla tego CVE: | Tytuł | Autor | Data |
Med. |
| T. Weber | 15.08.2023 |
Typ:
CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))
Referencje: |
https://cert.vde.com/en/advisories/VDE-2023-017
|
|
|
Copyright 2024, cxsecurity.com
|
|
|