CVE-2020-7481

Name of the Vulnerable Software and Affected Versions Andover Continuum versions all

Description A Cross-site Scripting vulnerability exists, which could enable a successful Cross-site Scripting attack when using the product's web server. This issue is related to improper neutralization of input during web page generation. The vulnerability may allow a remote attacker to conduct an XSS attack during the use of the web server applications.

Recommendations For all versions, consider disabling the web server functionality until a patch is available to prevent potential Cross-site Scripting attacks. Restrict access to the web server to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.