Vulnerability Details CVE-2024-55546
Missing input validation in the ORing IAP-420 web-interface allows stored Cross-Site Scripting (XSS).This issue affects IAP-420 version 2.01e and below.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 24.8%
CVSS Severity
CVSS v3 Score 5.4
References
Products affected by CVE-2024-55546
-
cpe:2.3:h:oringnet:iap-420:-
-
cpe:2.3:o:oringnet:iap-420_firmware:2.01e
-
cpe:2.3:o:oringnet:iap-420_firmware:2.0m