SAUTER Controls moduWeb firmware version 2.7.1 is vulnerable to reflective cross-site scripting (XSS). The web application does not adequately sanitize request strings of malicious JavaScript. An attacker utilizing XSS could then execute malicious code in users’ browsers and steal sensitive information, including user credentials.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.cisa.gov/uscert/ics/advisories/icsa-22-300-02 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2022-10-31T20:14:59.780953Z
Updated: 2024-09-16T16:58:31.378Z
Reserved: 2022-09-29T00:00:00
Link: CVE-2022-40190
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-10-31T21:15:12.660
Modified: 2024-11-21T07:21:01.907
Link: CVE-2022-40190
Redhat
No data.