3 matches found
CVE-2019-18267
The CVE-2019-18267 vulnerability affects GE S2020/S2020G Fast Switch 61850, specifically versions 07A03 and prior. It is a cross-site scripting flaw arising from improper input handling in the device’s web page generation, enabling both reflected and stored XSS that can lead to session hijacking,...
General Electric S2020/S2020G Fast Switch 61850 CVE-2019-18267 Cross Site Scripting Vulnerability
Description General Electric S2020/S2020G Fast Switch is is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...
GE S2020/S2020G Fast Switch 61850
1. EXECUTIVE SUMMARY CVSS v3 4.6 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: GE Equipment: GE S2020/S2020G Fast Switch 61850 Vulnerability: Cross-site Scripting 2. RISK EVALUATION Successful exploitation of this vulnerability may allow an attacker to inject arbitrary code...