2 matches found
CVE-2020-27262
The CVE-2020-27262 issue affects Innokas Yhtymä Oy Vital Signs Monitor VC150, prior to Version 1.7.15. A stored cross-site scripting (XSS) vulnerability exists in the administrative web interface that allows an attacker to inject arbitrary web script or HTML via the filename parameter to multiple...
Innokas Yhtymä Oy Vital Signs Monitor
1. EXECUTIVE SUMMARY CVSS v3 5.3 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Innokas Yhtymä Oy Equipment: Vital Signs Monitor VC150 Vulnerabilities: Cross-site Scripting, Improper Neutralization of Special Elements in Output Used by a Downstream Component 2. RISK EVALUATION...