CVE-2020-7482

Name of the Vulnerable Software and Affected Versions Andover Continuum (All versions)

Description A Cross-site Scripting vulnerability exists, which could cause a Reflective Cross-site Scripting attack when using the product's web server. This issue is related to the improper neutralization of input during web page generation, allowing a remote attacker to conduct an XSS attack. The vulnerability is associated with the lack of protection measures for the web page structure.

Recommendations For all versions, consider disabling the web server functionality until a patch is available to prevent exploitation of the Cross-site Scripting vulnerability. Restrict access to the web server to minimize the risk of reflective XSS attacks. Avoid using the web server for sensitive operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.