Back to search
CVE-2020-27262
Published: Jan 8, 2021
Modified: Aug 4, 2024
PUBLISHED
Description
Innokas Yhtymä Oy Vital Signs Monitor VC150 prior to Version 1.7.15 A stored cross-site scripting (XSS) vulnerability exists in the affected products that allow an attacker to inject arbitrary web script or HTML via the filename parameter to multiple update endpoints of the administrative web interface.
| Vendor | Product | Versions |
|---|---|---|
n/a | Innokas Yhtymä Oy Vital Signs Monitor VC150 | affected VC150 prior to Version 1.7.15 |
Weaknesses (CWE)
References
https://us-cert.cisa.gov/ics/advisories/icsma-21-007-01
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now