Vulnerability Details CVE-2020-23055
ANCOM WLAN Controller (Wireless Series & Hotspot) WLC-1000 & WLC-4006 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities in the /authen/start/ module via the userid and password parameters.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 51.1%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
References
Products affected by CVE-2020-23055
-
cpe:2.3:h:lancom-systems:wlc-1000:-
-
cpe:2.3:h:lancom-systems:wlc-4006:-
-
cpe:2.3:o:lancom-systems:lcos:10.12
-
cpe:2.3:o:lancom-systems:lcos:10.20
-
cpe:2.3:o:lancom-systems:lcos:10.32