ГлавнаяУязвимости → CVE-2024-38308
8.8высокая

CVE-2024-38308

Описание

Advantech ADAM 5550's web application includes a "logs" page where all the HTTP requests received are displayed to the user. The device doesn't correctly neutralize malicious code when parsing HTTP requests to generate page output.

Затрагиваемое ПО
Advantech Adam 5550-firmwareAdvantech Adam-5550
CVSS
Балл8.8 — высокая
ВекторCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://www.cisa.gov/news-events/ics-advisories/icsa-24-270-01