Vulnerabilities > Canon > Medical Vitrea View

DATE CVE VULNERABILITY TITLE RISK
2022-09-30 CVE-2022-37461 Cross-site Scripting vulnerability in Canon Medical Vitrea View
Multiple cross-site scripting (XSS) vulnerabilities in Canon Medical Vitrea View 7.x before 7.7.6 allow remote attackers to inject arbitrary web script or HTML via (1) the input after the error subdirectory to the /vitrea-view/error/ subdirectory, or the (2) groupID, (3) offset, or (4) limit parameter to an Administrative Panel (Group and Users) page.
network
low complexity
canon CWE-79
6.1