xArrow SCADA versions 7.2 and prior is vulnerable to cross-site scripting due to parameter ‘bdate’ of the resource xhisvalue.htm, which may allow an unauthorized attacker to execute arbitrary code.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2022-05-16T17:52:30.861258Z

Updated: 2024-09-16T17:59:20.611Z

Reserved: 2021-05-13T00:00:00

Link: CVE-2021-33001

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2022-05-16T18:15:08.230

Modified: 2022-05-25T13:52:56.230

Link: CVE-2021-33001

cve-icon Redhat

No data.