CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-23786

Cross-site scripting vulnerability in Energy Management Controller with Cloud Services JH-RVB1 /JH-RV11 Ver.B0.1.9.1 and earlier allows a network-adjacent unauthenticated attacker to execute an arbitrary script on the web browser of the user who is accessing the management page of the affected product.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.025

EPSS Ranking 84.9%

CVSS Severity

CVSS v3 Score 9.3

References

https://jp.sharp/support/taiyo/info/JVNVU94591337_en.pdf
https://jp.sharp/support/taiyo/info/JVNVU94591337_jp.pdf
https://jvn.jp/en/vu/JVNVU94591337/
https://jp.sharp/support/taiyo/info/JVNVU94591337_en.pdf
https://jp.sharp/support/taiyo/info/JVNVU94591337_jp.pdf
https://jvn.jp/en/vu/JVNVU94591337/

Products affected by CVE-2024-23786

Sharp » Jh-Rv11 » Version: N/A

cpe:2.3:h:sharp:jh-rv11:-
Sharp » Jh-Rvb1 » Version: N/A

cpe:2.3:h:sharp:jh-rvb1:-
Sharp » Jh-Rv11 Firmware » Version: N/A

cpe:2.3:o:sharp:jh-rv11_firmware:-
Sharp » Jh-Rv11 Firmware » Version: b0.1.9.1

cpe:2.3:o:sharp:jh-rv11_firmware:b0.1.9.1
Sharp » Jh-Rvb1 Firmware » Version: N/A

cpe:2.3:o:sharp:jh-rvb1_firmware:-
Sharp » Jh-Rvb1 Firmware » Version: b0.1.9.1

cpe:2.3:o:sharp:jh-rvb1_firmware:b0.1.9.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-23786

Products

Pricing

Contact Us