Unrated severityNVD Advisory· Published Jun 18, 2019· Updated Aug 5, 2024
CVE-2018-18880
CVE-2018-18880
Description
In firmware version MS_2.6.9900 of Columbia Weather MicroServer, a networkdiags.php reflected Cross-site scripting (XSS) vulnerability allows remote authenticated users to inject arbitrary web script.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Columbia Weather MicroServer/Columbia Weather MicroServerdescription
- Range: = MS_2.6.9900
Patches
Vulnerability mechanics
References
2- applied-risk.com/labs/advisoriesmitrex_refsource_MISC
- ics-cert.us-cert.gov/advisories/ICSA-19-078-02mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.