CVE-2024-5420

Vulnerability Description

Missing input validation in the SEH Computertechnik utnserver Pro, SEH Computertechnik utnserver ProMAX, SEH Computertechnik INU-100 web-interface allows stored Cross-Site Scripting (XSS)..This issue affects utnserver Pro, utnserver ProMAX, INU-100 version 20.1.22 and below.

Related Weaknesses (CWE)

CWE-79

References

http://seclists.org/fulldisclosure/2024/Jun/4
https://cyberdanube.com/security-research/multiple-vulnerabilities-in-seh-untser
http://seclists.org/fulldisclosure/2024/Jun/4
https://cyberdanube.com/en/en-multiple-vulnerabilities-in-oring-iap420/index.htm

FAQ

What is CVE-2024-5420?

CVE-2024-5420 is a documented vulnerability. Missing input validation in the SEH Computertechnik utnserver Pro, SEH Computertechnik utnserver ProMAX, SEH Computertechnik INU-100 web-interface allows stored Cross-Site Scripting (XSS)..This issue ...

How severe is CVE-2024-5420?

CVSS scoring is not yet available for CVE-2024-5420. Check NVD for updates.

Is there a patch for CVE-2024-5420?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.