Design/Logic Flaw

2021-12-1507:15:00

PRIOn knowledge base

www.prio-n.com

4.9 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

22.7%

JSON

Certain Motorola Solutions Avigilon devices allow XSS in the administrative UI. This affects T200/201 before 4.10.0.68; T290 before 4.4.0.80; T008 before 2.2.0.86; T205 before 4.12.0.62; T204 before 3.28.0.166; and T100, T101, T102, and T103 before 2.6.0.180.

CPENameOperatorVersion
t008_firmwarelt2.2.0.86
t100_firmwarelt2.6.0.180
t101_firmwarelt2.6.0.180
t102_firmwarelt2.6.0.180
t103_firmwarelt2.6.0.180
t200_firmwarelt4.10.0.68
t201_firmwarelt4.10.0.68
t204_firmwarelt3.28.0.166
t205_firmwarelt4.12.0.62
t290_firmwarelt4.4.0.80

Name	Operator	Version
t008_firmware	lt	2.2.0.86
t100_firmware	lt	2.6.0.180
t101_firmware	lt	2.6.0.180
t102_firmware	lt	2.6.0.180
t103_firmware	lt	2.6.0.180
t200_firmware	lt	4.10.0.68
t201_firmware	lt	4.10.0.68
t204_firmware	lt	3.28.0.166
t205_firmware	lt	4.12.0.62
t290_firmware	lt	4.4.0.80