CVE-2026-24348

CVSS v4.0

7.4

High

Vector

AV:A/AC:H/AT:N/PR:N/UI:P/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/AU:N/R:U

Name of the Vulnerable Software and Affected Versions EZCast Pro II version 1.17478.146

Description The Admin UI of EZCast Pro II contains cross-site scripting flaws. Successful exploitation allows attackers to execute arbitrary JavaScript code within the browser of other Admin UI users.

Recommendations Update to a newer version that contains a fix for this vulnerability.

Fix

XSS

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79CWE-20

Related Identifiers

CVE-2026-24348

Affected Products

Ezcast Pro Ii

CVE-2026-24348

Weakness Enumeration

Related Identifiers

Affected Products

References · 7