漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Cross-site Scripting has been identified in Moxa’s Ethernet switches, which allows an authenticated administrative attacker to inject malicious scripts to an affected device’s web service that could impact authenticated users interacting with the device’s web interface. This vulnerability is classified as stored cross-site scripting (XSS); attackers inject malicious scripts into the system, and the scripts persist across sessions. There is no impact to the confidentiality, integrity, and availability of the affected device; no loss of availability within any subsequent systems but has some loss of confidentiality and integrity within the subsequent system.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
Moxa Ethernet switches 安全漏洞
Vulnerability Description
Moxa Ethernet switches是中国台湾Moxa公司的一款工业级网络交换机。 Moxa Ethernet switches存在安全漏洞,该漏洞源于存储型跨站脚本攻击,可能导致后续系统部分机密性和完整性损失。以下产品受到影响:TN-4500A Series、TN-5500A Series、TN-G4500 Series、TN-G6500 Series。
CVSS Information
N/A
Vulnerability Type
N/A