PT-2026-51285 · Pilz · Pasvisu

Published

2026-06-22

Updated

2026-06-22

CVE-2023-45795

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Pilz PASvisu versions prior to 1.14.1

Description A cross-site scripting issue in the Builder Component allows a local unauthenticated attacker to inject malicious JavaScript, which can lead to full control over the device.

Recommendations Update to version 1.14.1.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2023-45795

Affected Products

Pasvisu

PT-2026-51285 · Pilz · Pasvisu

CVE-2023-45795

Weakness Enumeration

Related Identifiers

Affected Products

References · 3