Vulnerabilities > CVE-2023-5987 - Unspecified vulnerability in Schneider-Electric Ecostruxure Power Monitoring Expert 2020/2021
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
LOW Integrity impact
LOW Availability impact
NONE Summary
A CWE-79 Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) vulnerability that could cause a vulnerability leading to a cross site scripting condition where attackers can have a victim’s browser run arbitrary JavaScript when they visit a page containing the injected payload.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 5 |