← back
CVE-2023-3034

Reflected XSS in BKG Ntrip Professional Caster version <=2.0.44

CVSS 4.7 MEDIUMEPSS 0.3%CWE-20
Reflected XSS affects the ‘mode’ parameter in the /admin functionality of the web application in versions <=2.0.44
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N
Affected products
BKG · NTRIP Professional Caster

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://igs.bkg.bund.de/ntrip/bkgcasterhttps://igs.bkg.bund.de/root_ftp/NTRIP/software/NTRIPCASTER_CHANGELOG