CVE-2023-25551

Posted on by admin

CVE-2023-25551

A CWE-79: Improper Neutralization of Input During Web Page Generation (‘Cross-site
Scripting’) vulnerability exists on a DCE file upload endpoint when tampering with parameters
over HTTP.

Affected products: StruxureWare Data Center Expert (V7.9.2 and prior)

Source: CVE-2023-25551

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다