A CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists that could cause code and session manipulation when malicious code is inserted into the browser. Affected Products: NetBotz 4 - 355/450/455/550/570 (V4.7.0 and prior)
2023-04-18T20:15:10.297
2024-11-21T07:26:21.757
Modified
CVSSv3.1: 7.6 (HIGH)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | schneider-electric | netbotz_355_firmware | ≤ 4.7.0 | Yes |
| Hardware | schneider-electric | netbotz_355 | - | No |
| Operating System | schneider-electric | netbotz_450_firmware | ≤ 4.7.0 | Yes |
| Hardware | schneider-electric | netbotz_450 | - | No |
| Operating System | schneider-electric | netbotz_455_firmware | ≤ 4.7.0 | Yes |
| Hardware | schneider-electric | netbotz_455 | - | No |
| Operating System | schneider-electric | netbotz_550_firmware | ≤ 4.7.0 | Yes |
| Hardware | schneider-electric | netbotz_550 | - | No |
| Operating System | schneider-electric | netbotz_570_firmware | ≤ 4.7.0 | Yes |
| Hardware | schneider-electric | netbotz_570 | - | No |