CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-43376

A CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists that could cause code and session manipulation when malicious code is inserted into the browser. Affected Products: NetBotz 4 - 355/450/455/550/570 (V4.7.0 and prior)

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.2%

CVSS Severity

CVSS v3 Score 7.6

References

Products affected by CVE-2022-43376

Schneider-Electric » Netbotz 355 » Version: N/A

cpe:2.3:h:schneider-electric:netbotz_355:-
Schneider-Electric » Netbotz 450 » Version: N/A

cpe:2.3:h:schneider-electric:netbotz_450:-
Schneider-Electric » Netbotz 455 » Version: N/A

cpe:2.3:h:schneider-electric:netbotz_455:-
Schneider-Electric » Netbotz 550 » Version: N/A

cpe:2.3:h:schneider-electric:netbotz_550:-
Schneider-Electric » Netbotz 570 » Version: N/A

cpe:2.3:h:schneider-electric:netbotz_570:-
Schneider-Electric » Netbotz 355 Firmware » Version: Any

cpe:2.3:o:schneider-electric:netbotz_355_firmware:*
Schneider-Electric » Netbotz 450 Firmware » Version: Any

cpe:2.3:o:schneider-electric:netbotz_450_firmware:*
Schneider-Electric » Netbotz 455 Firmware » Version: Any

cpe:2.3:o:schneider-electric:netbotz_455_firmware:*
Schneider-Electric » Netbotz 550 Firmware » Version: Any

cpe:2.3:o:schneider-electric:netbotz_550_firmware:*
Schneider-Electric » Netbotz 570 Firmware » Version: Any

cpe:2.3:o:schneider-electric:netbotz_570_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-43376

Products

Pricing

Contact Us