Reliable Controls MACH-ProWebCom/Sys all versions prior to 2.15 Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) Vulnerability

Summary

Reliable Controls MACH-ProWebCom/Sys all versions prior to 2.15 suffers from improper neutralization of input during web page generation (‘Cross-site Scripting’) vulnerability

Credit:

The information has been provided by Vendor

The original article can be found at:https://www.us-cert.gov/ics/advisories/icsa-19-353-04


Details

Reliable Controls MACH-ProWebCom/Sys, all versions prior to 2.15 (Firmware versions prior to 8.26.4), may allow attacker to execute commands on behalf of the user when an authenticated user clicks on a malicious link.

 

Vulnerable Systems:

Reliable Controls MACH-ProWebCom/Sys all versions prior to 2.15

 

CVE Information:

CVE-2019-18249

 

Disclosure Timeline:
Published Date:12/24/2019

Categories: News