VYPR
Unrated severityNVD Advisory· Published Dec 8, 2021· Updated Sep 17, 2024

Reflected Cross Site Scripting (XSS) vulnerability in Bosch VRM / BVMS

CVE-2021-23860

Description

An error in a page handler of the VRM may lead to a reflected cross site scripting (XSS) in the web-based interface. To exploit this vulnerability an attack must be able to modify the HTTP header that is sent. This issue also affects installations of the DIVAR IP and BVMS with VRM installed.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.