cbcvebase.
CVE-2023-5986
published 2023-11-15

CVE-2023-5986: A CWE-601 URL Redirection to Untrusted Site vulnerability exists that could cause an openredirect vulnerability leading to a cross site scripting attack. By…

medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
A CWE-601 URL Redirection to Untrusted Site vulnerability exists that could cause an openredirect vulnerability leading to a cross site scripting attack. By providing a URL-encoded input attackers can cause the software’s web application to redirect to the chosen domain after a successful login is performed.

Affected

7 ranges
VendorProductVersion rangeFixed in
schneider-electricecostruxure_power_monitoring_expert
schneider-electricecostruxure_power_monitoring_expert
schneider_electricecostruxure_power_monitoring_expert
schneider_electricecostruxure_power_monitoring_expert
schneider_electricecostruxure_power_operation_advanced_reporting_and_dashboards_module
schneider_electricecostruxure_power_operation_advanced_reporting_and_dashboards_module
schneider_electricecostruxure_power_scada_operation_advanced_reporting_and_dashboards_module