An unauthenticated remote attacker may use a HTML injection vulnerability with limited length to inject malicious HTML code and gain low-privileged access on the affected device.
AI analysis not yet available
Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
| Vendor | Product | Versions | Fixed In |
|---|---|---|---|
| pepperl-fuchs | icdm-rx\/tcp_socketserver_firmware | 11.65 | - |
| pepperl-fuchs | profinet_firmware | 3.4.9 | - |
| pepperl-fuchs | profinet\/modbus_firmware |
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
8
Affected Products
1
References
pepperl-fuchs / icdm-rx\/tcp_socketserver_firmware
| 1.0.7 |
| - |
| pepperl-fuchs | modbus_router_firmware | 7.09 | - |
| pepperl-fuchs | modbus_server_firmware | 7.11 | - |
| pepperl-fuchs | modbus_tcp_firmware | 7.11 | - |
| pepperl-fuchs | ethernet\/ip_firmware | 7.22 | - |
| pepperl-fuchs | eip\/modbus_firmware | 1.08 | - |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Exploitability
Impact