Vulnerability Details CVE-2023-6333
The affected ControlByWeb Relay products are vulnerable to a stored cross-site scripting vulnerability, which could allow an attacker to inject arbitrary scripts into the endpoint of a web interface that could run malicious javascript code during a user's session.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 6.6%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2023-6333
-
cpe:2.3:h:controlbyweb:x-301-24i:-
-
cpe:2.3:h:controlbyweb:x-301-i:-
-
cpe:2.3:h:controlbyweb:x-332-24i:-
-
cpe:2.3:o:controlbyweb:x-301-24i_firmware:1.15
-
cpe:2.3:o:controlbyweb:x-301-i_firmware:1.15
-
cpe:2.3:o:controlbyweb:x-332-24i_firmware:1.06