The affected ControlByWeb Relay products are vulnerable to a stored cross-site scripting vulnerability, which could allow an attacker to inject arbitrary scripts into the endpoint of a web interface that could run malicious javascript code during a user's session.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2023-12-07T18:08:04.324Z

Updated: 2024-08-02T08:28:21.197Z

Reserved: 2023-11-27T16:35:14.892Z

Link: CVE-2023-6333

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-12-07T18:15:08.493

Modified: 2024-11-21T08:43:38.257

Link: CVE-2023-6333

cve-icon Redhat

No data.