Lucene search
+L

5 matches found

redhatcve
redhatcve
added 2026/01/09 9:21 a.m.10 views

CVE-2021-27418

GE UR firmware versions prior to version 8.1x supports web interface with read-only access. The device fails to properly validate user input, making it possible to perform cross-site scripting attacks, which may be used to send a malicious script. Also, UR Firmware web server does not perform HTM...

6.1CVSS6.2AI score0.00585EPSS
Exploits0References1
nvd
nvd
added 2022/03/23 8:15 p.m.21 views

CVE-2021-27418

GE UR firmware versions prior to version 8.1x supports web interface with read-only access. The device fails to properly validate user input, making it possible to perform cross-site scripting attacks, which may be used to send a malicious script. Also, UR Firmware web server does not perform HTM...

6.1CVSS0.00585EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2022/03/23 7:46 p.m.11 views

CVE-2021-27418 GE UR family input validation

GE UR firmware versions prior to version 8.1x supports web interface with read-only access. The device fails to properly validate user input, making it possible to perform cross-site scripting attacks, which may be used to send a malicious script. Also, UR Firmware web server does not perform HTM...

5.3CVSS6AI score0.00585EPSS
Exploits0References2
cvelist
cvelist
added 2022/03/23 7:46 p.m.21 views

CVE-2021-27418 GE UR family input validation

GE UR firmware versions prior to version 8.1x supports web interface with read-only access. The device fails to properly validate user input, making it possible to perform cross-site scripting attacks, which may be used to send a malicious script. Also, UR Firmware web server does not perform HTM...

5.3CVSS6.2AI score0.00585EPSS
Exploits0References2
cve
cve
added 2022/03/23 7:46 p.m.107 views

CVE-2021-27418

GE UR firmware prior to 8.1x exposes a web interface with read‑only access that does not properly validate user input and fails to HTML-encode user-supplied strings, enabling cross‑site scripting (CVE-2021-27418). Red Hat, NVD/NIST, and ICS references corroborate a web server input‑validation wea...

6.1CVSS5.8AI score0.00585EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder