Vulnerabilities > Webhmi > Webhmi Firmware > 4.1.1.7662
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-01 | CVE-2022-2254 | Cross-site Scripting vulnerability in Webhmi Firmware A user with administrative privileges in Distributed Data Systems WebHMI 4.1.1.7662 can store a script that could impact other logged in users. | 3.5 |
| 2022-07-01 | CVE-2022-2253 | OS Command Injection vulnerability in Webhmi Firmware A user with administrative privileges in Distributed Data Systems WebHMI 4.1.1.7662 may send OS commands to execute on the host server. | 9.0 |