CVE-2023-38255
Socomec MOD3GP-SY-120K Cross-site Scripting
A potential attacker with or without (cookie theft) access to the device would be able to include malicious code (XSS) when uploading new device configuration that could affect the intended function of the device.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
Affected products
Socomec · MODULYS GP (MOD3GP-SY-120K)Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →