CVE-2024-1304

Name of the Vulnerable Software and Affected Versions Badger Meter Monitool versions up to 4.6.3 and earlier

Description The issue is a cross-site scripting vulnerability that allows a remote attacker to send a specially crafted javascript payload to an authenticated user, potentially hijacking their browser session.

Recommendations For versions up to 4.6.3 and earlier, update to a version later than 4.6.3 to resolve the issue. As a temporary workaround, consider restricting access to the Monitool interface to minimize the risk of exploitation.