Vulnerabilities > CVE-2022-40190 - Unspecified vulnerability in Sauter-Controls Moduweb Firmware 2.7.1

047910
CVSS 9.6 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
sauter-controls
critical

Summary

SAUTER Controls moduWeb firmware version 2.7.1 is vulnerable to reflective cross-site scripting (XSS). The web application does not adequately sanitize request strings of malicious JavaScript. An attacker utilizing XSS could then execute malicious code in users’ browsers and steal sensitive information, including user credentials.

Vulnerable Configurations

Part Description Count
OS
Sauter-Controls
1