Lucene search

CVE-2020-16246

🗓️ 20 Oct 2020 15:12:15Reported by icscertType

The Reason S20 Ethernet Switch is vulnerable to cross-site scripting (XSS) attack

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 4
NVD	CVE-2020-16246	20 Oct 202015:15	–	nvd
Prion	Cross site scripting	20 Oct 202015:15	–	prion
Cvelist	CVE-2020-16246 GE Reason S20 Ethernet Switch	20 Oct 202015:00	–	cvelist
ICS	GE Reason S20 Ethernet Switch	22 Sep 202000:00	–	ics

Nvd

Node

ge s2020_firmwareRange<07a06

AND

ge s2020Match-

Node

ge s2024_firmwareRange<07a06

AND

ge s2024Match-

[
  {
    "product": "Reason S20 Ethernet Switch",
    "vendor": "General Electric",
    "versions": [
      {
        "lessThanOrEqual": "07A06",
        "status": "affected",
        "version": "S2020",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "07A06",
        "status": "affected",
        "version": "S2024",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
us-cert	www.us-cert.cisa.gov/ics/advisories/icsa-20-266-02

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

20 Oct 2020 15:15Current

6Medium risk

Vulners AI Score6

CVSS24.3

CVSS36.1

EPSS0.00185

CWE-79