CVE-2024-49311

Name of the Vulnerable Software and Affected Versions Edwiser Bridge versions 3.0.7 and earlier

Description The issue is related to an Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS) or Stored XSS. This allows Stored XSS attacks, which can be executed by an attacker.

Recommendations For Edwiser Bridge versions 3.0.7 and earlier, update to a version later than 3.0.7 to resolve the issue. As a temporary workaround, consider restricting user input to prevent malicious code execution until a patch is available. Avoid using potentially vulnerable features in Edwiser Bridge until the issue is resolved.