First published: Mon Mar 23 2020(Updated: )
A CWE-79:Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists Andover Continuum (All versions), which could cause a Reflective Cross-site Scripting (XSS attack) when using the products' web server.
Credit: cybersecurity@se.com
Affected Software | Affected Version | How to fix |
---|---|---|
Schneider-electric Andover Continuum 9680 Firmware | ||
Schneider-electric Andover Continuum 9680 | ||
Schneider-electric Andover Continuum 5740 Firmware | ||
Schneider-electric Andover Continuum 5740 | ||
Schneider-electric Andover Continuum 5720 Firmware | ||
Schneider-electric Andover Continuum 5720 | ||
Schneider-electric Andover Continuum Bcx4040 Firmware | ||
Schneider-electric Andover Continuum Bcx4040 | ||
Schneider-electric Andover Continuum Bcx9640 Firmware | ||
Schneider-electric Andover Continuum Bcx9640 | ||
Schneider-electric Andover Continuum 9900 Firmware | ||
Schneider-electric Andover Continuum 9900 | ||
Schneider-electric Andover Continuum 9940 Firmware | ||
Schneider-electric Andover Continuum 9940 | ||
Schneider-electric Andover Continuum 9941 Firmware | ||
Schneider-electric Andover Continuum 9941 | ||
Schneider-electric Andover Continuum 9924 Firmware | ||
Schneider-electric Andover Continuum 9924 | ||
Schneider-electric Andover Continuum 9702 Firmware | ||
Schneider-electric Andover Continuum 9702 | ||
Schneider-electric Andover Continuum 9200 Firmware | ||
Schneider-electric Andover Continuum 9200 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2020-7482.
The severity level of CVE-2020-7482 is medium with a CVSS score of 6.1.
The affected software for CVE-2020-7482 includes Schneider-electric Andover Continuum 9680 Firmware, Schneider-electric Andover Continuum 5740 Firmware, Schneider-electric Andover Continuum 5720 Firmware, Schneider-electric Andover Continuum Bcx4040 Firmware, Schneider-electric Andover Continuum Bcx9640 Firmware, Schneider-electric Andover Continuum 9900 Firmware, Schneider-electric Andover Continuum 9940 Firmware, Schneider-electric Andover Continuum 9941 Firmware, Schneider-electric Andover Continuum 9924 Firmware, Schneider-electric Andover Continuum 9702 Firmware, and Schneider-electric Andover Continuum 9200 Firmware.
CVE-2020-7482 is a Cross-site Scripting (XSS) vulnerability.
You can find more information about CVE-2020-7482 at this link: https://www.se.com/ww/en/download/document/SEVD-2020-070-04/