Cross-site scripting (XSS) vulnerability in the integrated web server on the Siemens Climatix BACnet/IP communication module with firmware prior to 10.34 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
siemens climatix bacnet\\/ip |