PT-2021-23614 · Trane · Tracer Sc+1

Chizuru Toyama

Published

2021-10-22

Updated

2021-10-27

CVE-2021-42534

CVSS v3.1

6.3

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned.

Description The issue concerns a web application that fails to properly neutralize input during webpage generation. This could allow an attacker to inject code into input forms.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2021-42534

Affected Products

Tracer Sc

Tracer Sc Firmware

PT-2021-23614 · Trane · Tracer Sc+1

CVE-2021-42534

Weakness Enumeration

Related Identifiers

Affected Products

References · 4