CVE-2022-45137
published 2023-02-27CVE-2022-45137: The configuration backend of the web-based management is vulnerable to reflected XSS (Cross-Site Scripting) attacks that targets the users browser. This leads…
medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
The configuration backend of the web-based management is vulnerable to reflected XSS (Cross-Site Scripting) attacks that targets the users browser. This leads to a limited impact of confidentiality and integrity but no impact of availability.
Affected
35 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| wago | 751-9301_firmware | — | — |
| wago | 751-9301_firmware | — | — |
| wago | 751-9301_firmware | >= 16 < 22 | 22 |
| wago | 752-8303_8000-002_firmware | — | — |
| wago | 752-8303_8000-002_firmware | — | — |
| wago | 752-8303_8000-002_firmware | >= 18 < 22 | 22 |
| wago | compact_controller_cc100 | — | — |
| wago | compact_controller_cc100 | >= FW16 < FW22 | FW22 |
| wago | edge_controller | — | — |
| wago | edge_controller | >= FW18 < FW22 | FW22 |
| wago | pfc100 | — | — |
| wago | pfc100 | >= FW16 < FW22 | FW22 |
| wago | pfc100_firmware | — | — |
| wago | pfc100_firmware | — | — |
| wago | pfc100_firmware | >= 16 < 22 | 22 |
| wago | pfc200 | — | — |
| wago | pfc200 | >= FW16 < FW22 | FW22 |
| wago | pfc200_firmware | — | — |
| wago | pfc200_firmware | — | — |
| wago | pfc200_firmware | >= 16 < 22 | 22 |
| wago | touch_panel_600_advanced_firmware | — | — |
| wago | touch_panel_600_advanced_firmware | — | — |
| wago | touch_panel_600_advanced_firmware | >= 16 < 22 | 22 |
| wago | touch_panel_600_advanced_line | — | — |
| wago | touch_panel_600_advanced_line | >= FW16 < FW22 | FW22 |