CVE-2021-23856

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1900%

EPSS Percentile7.32th

Published2021年10月4日

Last Modified2024年11月21日

Vulnerability Description

The web server is vulnerable to reflected XSS and therefore an attacker might be able to execute scripts on a client’s computer by sending the client a manipulated URL.

Affected Platforms (CPE)

💻

Bosch

Rexroth Indramotion Mlc L20 Firmware

All versions

💻

Bosch

Rexroth Indramotion Mlc L40 Firmware

All versions

References & Advisories

🔗 https://psirt.bosch.com/security-advisories/bosch-sa-741752.html

関連する脆弱性情報

CVE-2021-3916810.0

OpenZepplin is a library for smart contract development. In affected versions a vulnerability in TimelockController allowed an act...

CVE-2021-3189110.0

A vulnerability has been identified in Desigo CC (All versions with OIS Extension Module), GMA-Manager (All versions with OIS runn...

CVE-2021-3916710.0

OpenZepplin is a library for smart contract development. In affected versions a vulnerability in TimelockController allowed an act...

CVE-2021-3718110.0

A vulnerability has been identified in Cerberus DMS V4.0 (All versions), Cerberus DMS V4.1 (All versions), Cerberus DMS V4.2 (All ...