CVE-2019-7693

Name of the Vulnerable Software and Affected Versions Axios Italia Axios RE version 1.7.0/7.0.0

Description The issue concerns a cross-site scripting (XSS) flaw via the Error Parameters parameter in the RELogOff.aspx page. This could potentially affect the family.axioscloud.it cloud service in certain situations. Additionally, the vendor supports offline operation through "Sissi in Rete (con server)".

Recommendations For Axios Italia Axios RE version 1.7.0/7.0.0, avoid using the Error Parameters parameter in the RELogOff.aspx page until a fix is available. As a temporary workaround, consider restricting access to the RELogOff.aspx page to minimize the risk of exploitation.