Vector Strings

Severity Score: 5.4
Severity: MEDIUM
Exploitability Score: 2.3
Impact Score: 2.7

Access Vector (AV):
Access Complexity (AC):
Authentication (AU): LOW
Confidentiality (C): LOW
Integrity (I): LOW
Availability (A): NONE

Published Date: 2021-08-02
Last Modified: 2021-08-09

CVE-2021-3351

About:
OpenPLC runtime V3 through 2016-03-14 allows stored XSS via the Device Name to the web server's Add New Device page.

References

https://www.youtube.com/watch?v=eSAqXq4m8so

Related CVEs

No related CVEs.

Empower Your Security Strategy with Rainforest

Discover vulnerabilities early, prioritize critical threats, and protect what truly matters. Rainforest streamlines your security operations, saving you time and reducing costs, so you can focus on what drives your business forward.

Book a Demo