CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS
Percentile
21.7%
Milesight UR5X, UR32L, UR32, UR35, UR41 before v35.3.0.7 was discovered to contain a cross-site scripting (XSS) vulnerability via the admin panel.
Vendor | Product | Version | CPE |
---|---|---|---|
milesight | ur51_firmware | * | cpe:2.3:o:milesight:ur51_firmware:*:*:*:*:*:*:*:* |
milesight | ur51 | - | cpe:2.3:h:milesight:ur51:-:*:*:*:*:*:*:* |
milesight | ur52_firmware | * | cpe:2.3:o:milesight:ur52_firmware:*:*:*:*:*:*:*:* |
milesight | ur52 | - | cpe:2.3:h:milesight:ur52:-:*:*:*:*:*:*:* |
milesight | ur55_firmware | * | cpe:2.3:o:milesight:ur55_firmware:*:*:*:*:*:*:*:* |
milesight | ur55 | - | cpe:2.3:h:milesight:ur55:-:*:*:*:*:*:*:* |
milesight | ur32l_firmware | * | cpe:2.3:o:milesight:ur32l_firmware:*:*:*:*:*:*:*:* |
milesight | ur32l | - | cpe:2.3:h:milesight:ur32l:-:*:*:*:*:*:*:* |
milesight | ur32_firmware | * | cpe:2.3:o:milesight:ur32_firmware:*:*:*:*:*:*:*:* |
milesight | ur32 | - | cpe:2.3:h:milesight:ur32:-:*:*:*:*:*:*:* |