CVE-2020-16246

CVE-2020-16246: GE Reason S20 Ethernet Switch

Vendor General Electric
Product Reason S20 Ethernet Switch
Weakness CWE-79 · XSS
Published October 20, 2020
Last update September 17, 2024

CVSS base score

What the vulnerability does

01Description

The affected Reason S20 Ethernet Switch is vulnerable to cross-site scripting (XSS), which may allow attackers to trick users into following a link or navigating to a page that posts a malicious JavaScript statement to the vulnerable site, causing the malicious JavaScript to be rendered by the site and executed by the victim client.

Key dates

02Disclosure timeline

October 20, 2020 CVE published
September 17, 2024 Record updated