2 matches found
CVE-2021-41542
A vulnerability has been identified in Climatix POL909 AWB module All versions V11.44, Climatix POL909 AWM module All versions V11.36. The User Management page of affected devices is vulnerable to cross-site scripting XSS. The vulnerability allows an attacker to send malicious JavaScript code whi...
CVE-2021-41542
Siemens Climatix POL909 devices (AWM and AWB modules) are affected by cross-site scripting on the User Management and Group Management web pages. The vulnerability stems from improper input handling in the web interface, allowing execution of malicious JavaScript that can hijack cookies/sessions ...