Vulnerability CVE-2022-4286
Published: 2023-02-14

Description:
A reflected cross-site scripting (XSS) vulnerability exists in System Diagnostics Manager of B&R Automation Runtime versions >=3.00 and <=C4.93 that enables a remote attacker to execute arbitrary JavaScript in the context of the users browser session.

See advisories in our WLB2 database:
Topic
Author
Date
Low
B&R Systems Diagnostics Manager Cross Site Scripting
Gerhard Hechenbe...
16.02.2023
Low
B&R Systems Diagnostics Manager Cross Site Scripting
Gerhard Hechenbe...
16.02.2023

Type:

CWE-79

 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://www.br-automation.com/de/service/cyber-security/
Copyright 2024, cxsecurity.com

 

Back to Top