← back
CVE-2017-5157

CVE-2017-5157

EPSS 1.5%
An issue was discovered in Schneider Electric homeLYnk Controller, LSS100100, all versions prior to V1.5.0. The homeLYnk controller is susceptible to a cross-site scripting attack. User inputs can be manipulated to cause execution of JavaScript code.
Affected products
n/a · Schneider Electric homeLYnk Controller prior to V1.5.0

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://ics-cert.us-cert.gov/advisories/ICSA-17-019-01http://www.securityfocus.com/bid/95665