Vulnerability CVE-2023-4203


Published: 2023-08-08

Description:
Advantech EKI-1524, EKI-1522, EKI-1521 devices through 1.21 are affected by a Stored Cross-Site Scripting vulnerability, which can be triggered by authenticated users in the ping tool of the web-interface.

See advisories in our WLB2 database:
Topic
Author
Date
Low
Advantech EKI-1524-CE / EKI-1522 / EKI-1521 Cross Site Scripting
T. Weber
15.08.2023

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://cyberdanube.com/en/en-st-polten-uas-multiple-vulnerabilities-in-advantech-eki-15xx-series/

Copyright 2023, cxsecurity.com

 

Back to Top