Vulnerability Description
Missing input validation in the SEH Computertechnik utnserver Pro, SEH Computertechnik utnserver ProMAX, SEH Computertechnik INU-100 web-interface allows stored Cross-Site Scripting (XSS). This issue affects utnserver Pro, utnserver ProMAX, INU-100 version 20.1.22 and below.
Related Weaknesses (CWE)
References
- https://cyberdanube.com/en/en-st-polten-uas-stored-cross-site-scripting-in-seh-u
- http://seclists.org/fulldisclosure/2024/Nov/7
FAQ
What is CVE-2024-11304?
CVE-2024-11304 is a documented vulnerability. Missing input validation in the SEH Computertechnik utnserver Pro, SEH Computertechnik utnserver ProMAX, SEH Computertechnik INU-100 web-interface allows stored Cross-Site Scripting (XSS). This issue ...
How severe is CVE-2024-11304?
CVSS scoring is not yet available for CVE-2024-11304. Check NVD for updates.
Is there a patch for CVE-2024-11304?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.