An attacker with access to the Westermo Lynx web application that has the vulnerable software could introduce arbitrary JavaScript by injecting a cross-site scripting payload into the "forward.0.domain" parameter.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:NWestermo L206 F2g
HWWestermowszystkie wersjeWestermo L206 F2g Firmware
OSWestermo4.24
Related vulnerabilities
The cross-site request forgery token in the request may be predictable or easily guessable allowi...
A potential attacker with access to the Westermo Lynx device may be able to execute malicious code that c...
An attacker with access to the vulnerable software could introduce arbitrary JavaScript by injecting ...
An attacker with access to the web application that has the vulnerable software could introduce arbitrary J...
An attacker with access to the web application with vulnerable software could introduce arbitra...