NewType WebEIP v3.0 - Reflected XSS

Vulnerability

NewType WebEIP v3.0 does not properly validate user input in specific parameters, allowing a remote attacker with regular privileges to insert arbitrary JavaScript. This reflected Cross-site Scripting (XSS) vulnerability affects WebEIP v3.0, which has been unsupported for over 15 years [1][2].

Exploitation

An attacker must have a valid account with regular privileges. By crafting a malicious URL with injected JavaScript code in specific parameters, the attacker can trick a victim into clicking the link, causing the script to execute in the victim's browser context [1][2].

Impact

Successful exploitation enables the attacker to execute arbitrary JavaScript in the victim's browser, leading to potential disclosure of session cookies, redirection to malicious sites, or defacement of the web interface. The CVSS v3.1 score is 5.4 (Medium) with vector AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N, indicating low confidentiality and integrity impact with scope change [1][2].

Mitigation

The vendor has confirmed that WebEIP v3.0 is no longer maintained. No security patch will be released. Users are strongly advised to upgrade to the new WebEIP Pro product [1][2].