Medium severity5.5NVD Advisory· Published Jan 16, 2024· Updated Jun 17, 2026
CVE-2024-0554
CVE-2024-0554
Description
A Cross-site scripting (XSS) vulnerability has been found on WIC1200, affecting version 1.1. An authenticated user could store a malicious javascript payload in the device model parameter via '/setup/diags_ir_learn.asp', allowing the attacker to retrieve the session details of another user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2= 1.1+ 1 more
- (no CPE)range: = 1.1
- (no CPE)range: 1.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.