Vulnerabilities > Rockwellautomation > Compactlogix 1769 L36Erm Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2016-03-02 CVE-2016-2279 Cross-site Scripting vulnerability in Rockwellautomation products
Cross-site scripting (XSS) vulnerability in the web server in Rockwell Automation Allen-Bradley CompactLogix 1769-L* before 28.011+ allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
network
low complexity
rockwellautomation CWE-79
6.1