CVE-2024-3576
CVSS V2 None
CVSS V3 None
Description
The NPort 5100A Series firmware version v1.6 and prior versions are affected by web server XSS vulnerability. The vulnerability is caused by not correctly neutralizing user-controllable input before placing it in output. Malicious users may use the vulnerability to get sensitive information and escalate privileges.
Overview
- CVE ID
- CVE-2024-3576
- Assigner
- Moxa
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-05-06T12:04:47.826Z
- Last Modified Date
- 2024-06-06T19:21:26.228Z
Weakness Enumerations
References
Reference URL | Reference Tags |
---|---|
https://www.moxa.com/en/support/product-support/security-advisory/mpsa-246328-nport-5100a-series-store-xss-vulnerability | vendor-advisory |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2024-3576 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-3576 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2024-06-24 00:02:13 | Added to TrackCVE |