The web interface of the 1734-AENTR communication module is vulnerable to stored XSS. A remote, unauthenticated attacker could store a malicious script within the web interface that, when executed, could modify some string values on the homepage of the web interface.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rockwellautomation 1734-aentr_point_i\\/o_dual_port_network_adaptor_series_b_firmware |
||
rockwellautomation 1734-aentr_point_i\\/o_dual_port_network_adaptor_series_c_firmware 6.011 |
||
rockwellautomation 1734-aentr_point_i\\/o_dual_port_network_adaptor_series_c_firmware 6.012 |