VYPR
Unrated severityNVD Advisory· Published Nov 13, 2023· Updated Aug 30, 2024

Cross-site Scripting on ICSSolution ICS Business Manager

CVE-2023-6098

Description

An XSS vulnerability has been discovered in ICS Business Manager affecting version 7.06.0028.7066. A remote attacker could send a specially crafted string exploiting the obdd_act parameter, allowing the attacker to steal an authenticated user's session, and perform actions within the application.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Range: = 7.06.0028.7066
  • ICSSolution/ICS Business Managerv5
    Range: 7.06.0028.7066

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.