Vulnerabilities > CVE-2023-25018 - Unspecified vulnerability in Rifartek IOT Wall 22

047910
CVSS 5.4 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
NONE
network
low complexity
rifartek

Summary

RIFARTEK IOT Wall transportation function has insufficient filtering for user input. An authenticated remote attacker with general user privilege can inject JavaScript to perform reflected XSS (Reflected Cross-site scripting) attack.

Vulnerable Configurations

Part Description Count
Application
Rifartek
1