Vulnerability CVE-2023-4202


Published: 2023-08-08

Description:
Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, which can be triggered by authenticated users in the device name field of the web-interface.


See advisories in our WLB2 database:
Topic
Author
Date
Low
Advantech EKI-1524-CE / EKI-1522 / EKI-1521 Cross Site Scripting
T. Weber
15.08.2023

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://cyberdanube.com/en/en-st-polten-uas-multiple-vulnerabilities-in-advantech-eki-15xx-series/

Copyright 2024, cxsecurity.com

 

Back to Top