RSS   Vulnerabilities for 'Fds-pc firmware'   RSS

2018-02-20
 
CVE-2018-7278

CWE-79
 

 
An issue was discovered on RLE Protocol Converter FDS-PC / FDS-PC-DP 2.1 devices. Persistent XSS exists in the web server. Remote attackers can inject malicious JavaScript code using the device's BACnet implementation. This is similar to a Cross Protocol Injection with SNMP.

 

 >>> Vendor: Rletech 4 Products
Fds-wi firmware
Wi-mgr firmware
Fds-pc-dp firmware
Fds-pc firmware


Copyright 2024, cxsecurity.com

 

Back to Top