Lucene search
SchneiderCVELIST:CVE-2020-28210HistoryNov 19, 2020 - 9:01 p.m.
CVE-2020-28210
2020-11-1921:01:31
CWE-79
schneider
www.cve.org
0.001 Low
EPSS
Percentile
34.0%
A CWE-79 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability exists in EcoStruxure Building Operation WebStation V2.0 - V3.1 that could cause an attacker to inject HTML and JavaScript code into the userβs browser.
CNA Affected
[
{
"product": "EcoStruxure Building Operation WebStation V2.0 - V3.1",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "EcoStruxure Building Operation WebStation V2.0 - V3.1"
}
]
}
]Related
nvd
nvd
CVE-2020-28210
2020-11-19 21:15:12
cve
cve
CVE-2020-28210
2020-11-19 21:15:12
prion
prion
Cross site scripting
2020-11-19 21:15:00
ics
ics
Schneider Electric EcoStruxure Building Operation (EBO)
2021-03-08 12:00:00