Kiryukhin Dmitry
+2
·
Published
2022-03-10
·
Updated
2024-12-02
·
CVE-2024-34923
6.4
Medium
| Base vector | Vector | AV:N/AC:L/Au:N/C:P/I:P/A:N |
Name of the Vulnerable Software and Affected Versions:
Avocent DSR2030 versions 03.04.00.07 through 03.07.01.22
Avocent SVIP1020 versions 01.06.00.03 through 01.06.00.03
Description:
The issue exists due to inadequate protection of the web page structure, allowing a remote attacker to conduct a cross-site scripting (XSS) attack. This is a reflected cross-site scripting vulnerability.
Recommendations:
For Avocent DSR2030 versions 03.04.00.07 through 03.07.01.22, update to version 03.07.01.23 or later.
For Avocent SVIP1020 versions 01.06.00.03, update to version 01.07.00.00 or later.
Fix
XSS