Vulnerability Details CVE-2021-27465
A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected applications do not validate webpage input, which could allow an attacker to inject arbitrary HTML code into a webpage. This would allow an attacker to modify the page and display incorrect or undesirable data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 39.1%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
Products affected by CVE-2021-27465
-
cpe:2.3:h:emerson:x-stream_enhanced_xefd:-
-
cpe:2.3:h:emerson:x-stream_enhanced_xegk:-
-
cpe:2.3:h:emerson:x-stream_enhanced_xegp:-
-
cpe:2.3:h:emerson:x-stream_enhanced_xexf:-
-
cpe:2.3:o:emerson:x-stream_enhanced_xefd_firmware:-
-
cpe:2.3:o:emerson:x-stream_enhanced_xegk_firmware:-
-
cpe:2.3:o:emerson:x-stream_enhanced_xegp_firmware:-
-
cpe:2.3:o:emerson:x-stream_enhanced_xexf_firmware:-