Reason · Reason S20 Ethernet Switch · CVE-2020-16246
**Name of the Vulnerable Software and Affected Versions**
Reason S20 Ethernet Switch (affected versions not specified)
**Description**
The issue allows attackers to perform cross-site scripting (XSS) attacks, which may trick users into following a link or navigating to a page that posts a malicious JavaScript statement to the vulnerable site. This causes the malicious JavaScript to be rendered by the site and executed by the victim client.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.