Описание
An unauthenticated remote attacker may use stored XSS vulnerability to obtain information from a user or reboot the affected device once.
Затрагиваемое ПО
Pepperl-fuchs Icdm-rx\/tcp socketserver firmwarePepperl-fuchs Icdm-rx\/tcp-16db9\/rj45-rmPepperl-fuchs Icdm-rx\/tcp-16rj45\/2rj45-pmPepperl-fuchs Icdm-rx\/tcp-16rj45\/rj45-rmPepperl-fuchs Icdm-rx\/tcp-2db9\/rj45-dinPepperl-fuchs Icdm-rx\/tcp-2st\/rj45-dinPepperl-fuchs Icdm-rx\/tcp-32rj45\/rj45-rmPepperl-fuchs Icdm-rx\/tcp-4db9\/2rj45-dinPepperl-fuchs Icdm-rx\/tcp-4db9\/2rj45-pmPepperl-fuchs Icdm-rx\/tcp-8db9\/2rj45-pmPepperl-fuchs Icdm-rx\/tcp-db9\/rj45-dinPepperl-fuchs Icdm-rx\/tcp-db9\/rj45-pmPepperl-fuchs Icdm-rx\/tcp-db9\/rj45-pm2Pepperl-fuchs Icdm-rx\/tcp-st\/rj45-dinPepperl-fuchs Profinet firmwarePepperl-fuchs Icdm-rx\/pn-2db9\/rj45-dinPepperl-fuchs Icdm-rx\/pn-2st\/rj45-dinPepperl-fuchs Icdm-rx\/pn-4db9\/2rj45-dinPepperl-fuchs Icdm-rx\/pn-db9\/rj45-dinPepperl-fuchs Icdm-rx\/pn-db9\/rj45-pmPepperl-fuchs Icdm-rx\/pn-st\/rj45-dinPepperl-fuchs Profinet\/modbus firmwarePepperl-fuchs Icdm-rx\/pn1-2db9\/rj45-dinPepperl-fuchs Icdm-rx\/pn1-2st\/rj45-dinPepperl-fuchs Icdm-rx\/pn1-4db9\/2rj45-din
CVSS
| Балл | 7.1 — высокая |
| Вектор | CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L |
Источники
https://cert.vde.com/en/advisories/VDE-2024-033