Boodskap IoT Platform v4.4.9-02 contains a cross-site scripting (XSS) vulnerability.
5.4CVSS
5.3AI Score
0.001EPSS
Boodskap IoT Platform v4.4.9-02 allows attackers to escalate privileges via a crafted request sent to /api/user/upsert/<uuid>.
8.8CVSS
8.5AI Score
0.001EPSS
Boodskap IoT Platform v4.4.9-02 allows attackers to make unauthenticated API requests.
6.5CVSS
6.5AI Score
0.001EPSS