CVE-2023-39938

Name of the Vulnerable Software and Affected Versions VI Web Client versions prior to 7.9.6

Description A reflected cross-site scripting issue allows a remote unauthenticated attacker to inject an arbitrary script. This enables the attacker to execute malicious code on the victim's browser, potentially leading to unauthorized actions or data theft.

Recommendations For versions prior to 7.9.6, update to version 7.9.6 or later to resolve the issue. As a temporary workaround, consider restricting access to the VI Web Client until the update can be applied.