A stored cross-site scripting vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to arbitrary Javascript execution. An attacker can send an HTTP request to trigger this vulnerability.Form field id="Switch Description", name "switch_description"
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: talos
Published: 2023-02-07T16:52:03.117Z
Updated: 2024-08-03T12:42:44.840Z
Reserved: 2022-09-21T20:50:07.445Z
Link: CVE-2022-41312
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-02-07T17:15:11.200
Modified: 2024-11-21T07:23:01.400
Link: CVE-2022-41312
Redhat
No data.