CVE-2023-5378

Name of the Vulnerable Software and Affected Versions MegaBIP versions up to 4.36.2 SmodBIP all versions

Description The issue is related to an Improper Input Validation vulnerability that allows for Stored XSS. This vulnerability affects MegaBIP in versions up to 4.36.2 and SmodBIP in all versions. MegaBIP version 5.08 has been tested and is not vulnerable.

Recommendations For MegaBIP versions up to 4.36.2, update to a version newer than 4.36.2 to resolve the issue. For SmodBIP all versions, since the software is already unsupported, consider alternative solutions or manually patch the software if possible. As a temporary workaround, consider implementing additional input validation mechanisms to minimize the risk of exploitation.