CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
AI Score
Confidence
High
EPSS
Percentile
27.8%
The vulnerability allows an unauthenticated remote attacker to send malicious network requests containing arbitrary client-side script code and obtain its execution inside a victim’s session via a crafted URL, HTTP request, or simply by waiting for the victim to view the poisoned log.
[
{
"vendor": "Rexroth",
"product": "Nexo cordless nutrunner NXA015S-36V (0608842001)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo cordless nutrunner NXA030S-36V (0608842002)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo cordless nutrunner NXA050S-36V (0608842003)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo cordless nutrunner NXP012QD-36V (0608842005)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo cordless nutrunner NXA015S-36V-B (0608842006)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo cordless nutrunner NXA030S-36V-B (0608842007)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo cordless nutrunner NXA050S-36V-B (0608842008)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo cordless nutrunner NXP012QD-36V-B (0608842010)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo cordless nutrunner NXA011S-36V (0608842011)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo cordless nutrunner NXA011S-36V-B (0608842012)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo cordless nutrunner NXA065S-36V (0608842013)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo cordless nutrunner NXA065S-36V-B (0608842014)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo cordless nutrunner NXV012T-36V (0608842015)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo cordless nutrunner NXV012T-36V-B (0608842016)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo special cordless nutrunner (0608PE2272)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo special cordless nutrunner (0608PE2301)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo special cordless nutrunner (0608PE2514)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo special cordless nutrunner (0608PE2515)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo special cordless nutrunner (0608PE2666)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
},
{
"vendor": "Rexroth",
"product": "Nexo special cordless nutrunner (0608PE2673)",
"versions": [
{
"version": "NEXO-OS V1000-Release",
"status": "affected",
"versionType": "custom",
"lessThanOrEqual": "NEXO-OS V1500-SP2"
}
]
}
]
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
AI Score
Confidence
High
EPSS
Percentile
27.8%