QwikSec

Security Database

CVE

CWE

Training

CVE-2017-16723

Published: Dec 11, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

A Cross-site Scripting issue was discovered in PHOENIX CONTACT FL COMSERVER BASIC 232/422/485, FL COMSERVER UNI 232/422/485, FL COMSERVER BAS 232/422/485-T, FL COMSERVER UNI 232/422/485-T, FL COM SERVER RS232, FL COM SERVER RS485, and PSI-MODEM/ETH (running firmware versions prior to 1.99, 2.20, or 2.40). The cross-site scripting vulnerability has been identified, which may allow remote code execution.

Vendor	Product	Versions
n/a	PHOENIX CONTACT FL COMSERVER, FL COM SERVER, and PSI-MODEM/ETH	affected `PHOENIX CONTACT FL COMSERVER, FL COM SERVER, and PSI-MODEM/ETH`

References

https://cert.vde.com/de-de/advisories/vde-2017-004

x_refsource_MISC

https://ics-cert.us-cert.gov/advisories/ICSA-17-341-03

x_refsource_MISC

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.