Unrated severityNVD Advisory· Published Nov 10, 2021· Updated Sep 16, 2024
Phoenix Contact: FL MGUARD XSS through web-based management and REST API
CVE-2021-34582
Description
In Phoenix Contact FL MGUARD 1102 and 1105 in Versions 1.4.0, 1.4.1 and 1.5.0 a user with high privileges can inject HTML code (XSS) through web-based management or the REST API with a manipulated certificate file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 1.4.0, 1.4.1, 1.5.0
- Range: 1.4.0
Patches
Vulnerability mechanics
References
1- cert.vde.com/en/advisories/VDE-2021-046/mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.