The software may be vulnerable to both Un-Auth XML interaction and unauthenticated device enrollment.
5.3CVSS
5.3AI Score
0.001EPSS
The Master operator may be able to embed script tag in HTML with alert pop-up display cookie.
6.6CVSS
5AI Score
0.001EPSS