Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Honeywell MPA2 Web Application XSS vulnerability
Vulnerability Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Honeywell MPA2 Access Panel (Web server modules) allows XSS Using Invalid Characters.This issue affects MPA2 Access Panel all version prior to R1.00.08.05. Honeywell released firmware update package MPA2 firmware R1.00.08.05 which addresses this vulnerability. This version and all later versions correct the reported vulnerability.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Honeywell MPA2 Access Panel 安全漏洞
Vulnerability Description
Honeywell MPA2 Access Panel是美国霍尼韦尔(Honeywell)公司的一款用于访问控制系统的硬件设备。 Honeywell MPA2 Access Panel R1.00.08.05之前版本存在安全漏洞,该漏洞源于存在跨站脚本漏洞,允许使用无效字符。
CVSS Information
N/A
Vulnerability Type
N/A