← volver
CVE-2024-23786

CVE-2024-23786

CVSS 9.3 CRITICALEPSS 0.8%CWE-79
Cross-site scripting vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to execute an arbitrary script on the web browser of the user who is accessing the management page of the affected product.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
Productos afectados
SHARP CORPORATION · Energy Management Controller with Cloud Services

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://jp.sharp/support/taiyo/info/JVNVU94591337_en.pdfhttps://jp.sharp/support/taiyo/info/JVNVU94591337_jp.pdfhttps://jvn.jp/en/vu/JVNVU94591337/