Unrated severityNVD Advisory· Published Aug 13, 2024· Updated Aug 13, 2024
Pepperl+Fuchs: Device Master ICDM-RX/* XSS vulnerability allows HTML injection
CVE-2024-38501
Description
An unauthenticated remote attacker may use a HTML injection vulnerability with limited length to inject malicious HTML code and gain low-privileged access on the affected device.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7- Range: PROFINET
- Range: EtherNet/IP
EIP/Modbus+ 1 more
- (no CPE)range: EIP/Modbus
- (no CPE)range: EIP/Modbus
EIP/Modbus+ 1 more
- (no CPE)range: EIP/Modbus
- (no CPE)range: PROFINET/Modbus
- Range: SocketServer
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.