CVE-2023-22373

CVSS V2 None CVSS V3 None
Description
Cross-site scripting vulnerability in CONPROSYS HMI System (CHS) Ver.3.4.5 and earlier allows a remote authenticated attacker to inject an arbitrary script and obtain the sensitive information.
Overview
  • CVE ID
  • CVE-2023-22373
  • Assigner
  • vultures@jpcert.or.jp
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-01-20T03:15:10
  • Last Modified Date
  • 2023-01-26T19:31:59
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:contec:conprosys_hmi_system:*:*:*:*:*:*:*:* 1 OR 3.4.5
History
Created Old Value New Value Data Type Notes
2023-01-20 03:15:32 Added to TrackCVE
2023-01-20 15:14:54 2023-01-20T13:54:58 CVE Modified Date updated
2023-01-20 15:14:54 Received Awaiting Analysis Vulnerability Status updated
2023-01-25 17:14:40 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2023-01-26 23:15:31 2023-01-26T19:31:59 CVE Modified Date updated
2023-01-26 23:15:31 Undergoing Analysis Analyzed Vulnerability Status updated
2023-01-26 23:15:32 Weakness Enumeration new
2023-01-26 23:15:34 CPE Information updated