Digi International ConnectPort LTS 32 MEI, Firmware Version 1.4.3 (82002228_K 08/09/2018), bios Version 1.2. Multiple cross-site scripting vulnerabilities exist that could allow an attacker to cause a denial-of-service condition.
References
Link | Resource |
---|---|
https://www.us-cert.gov/ics/advisories/icsa-20-042-13 | Third Party Advisory US Government Resource |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2020-02-12 16:15
Updated : 2020-02-21 10:16
NVD link : CVE-2020-6973
Mitre link : CVE-2020-6973
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
digi
- connectport_lts_32_mei
- connectport_lts_32_mei_firmware
- connectport_lts_32_mei_bios