Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.1
CVSSv3

CVE-2019-6853

Published: 20/11/2019 Updated: 03/12/2019
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Schneider-electric

Vulnerability Summary

A CWE-79: Failure to Preserve Web Page Structure vulnerability exists in Andover Continuum (models 9680, 5740 and 5720, bCX4040, bCX9640, 9900, 9940, 9924 and 9702) , which could enable a successful Cross-site Scripting (XSS attack) when using the products web server.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

schneider-electric andover_continuum_9680_firmware -

schneider-electric andover_continuum_5740_firmware -

schneider-electric andover_continuum_5720_firmware -

schneider-electric andover_continuum_bcx4040_firmware -

schneider-electric andover_continuum_bcx9640_firmware -

schneider-electric andover_continuum_9900_firmware -

schneider-electric andover_continuum_9940_firmware -

schneider-electric andover_continuum_9941_firmware -

schneider-electric andover_continuum_9924_firmware -

schneider-electric andover_continuum_9702_firmware -

schneider-electric andover_continuum_9200_firmware -

References

CWE-79https://www.se.com/ww/en/download/document/SEVD-2019-316-01/https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryptionCVE-2024-4331CVE-2024-26925arbitrary codeCVE-2006-4304CVE-2024-25458CVE-2024-27077reflected XSSCVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook