Cross site scripting

2023-02-1415:15:00

PRIOn knowledge base

www.prio-n.com

cross site scripting

reflected vulnerability

b&r automation runtime

remote attacker

arbitrary javascript

0.001 Low

EPSS

Percentile

36.9%

JSON

A reflected cross-site scripting (XSS) vulnerability exists in System Diagnostics Manager of B&R Automation Runtime versions >=3.00 and <=C4.93 that enables a remote attacker to execute arbitrary JavaScript in the context of the users browser session.

CPENameOperatorVersion
automation_runtimeeq>= 3.0 AND <= c4.93

CPE	Name	Operator	Version
	automation_runtime	eq	>= 3.0 AND <= c4.93

References

www.br-automation.com/downloads_br_productcatalogue/assets/1675607299099-en-original-1.0.pdf

0.001 Low

EPSS

Percentile

36.9%

JSON

Related for PRION:CVE-2022-4286