Improper Neutralization of Input During Web Page Generation (’Cross-site Scripting’) in RDT400 in SICK APU allows an unprivileged remote attacker to run arbitrary code in the clients
browser via injecting code into the website.
References
Link | Resource |
---|---|
https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.json | Vendor Advisory |
https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.pdf | Vendor Advisory |
https://sick.com/psirt | Product |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: SICK AG
Published: 2023-10-09T12:01:28.992Z
Updated: 2023-10-09T12:01:28.992Z
Reserved: 2023-09-21T07:10:31.289Z
Link: CVE-2023-43698
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-10-09T13:15:10.407
Modified: 2023-10-11T18:50:19.867
Link: CVE-2023-43698
JSON object: View
Redhat Information
No data.
CWE