CVE-2022-22812

CVE-2022-22812

Vendor N/A
Product spaceLYnk (V2.6.2 and prior), Wiser for KNX (formerly homeLYnk) (V2.6.2 and prior), fellerLYnk (V2.6.2 and prior)
Weakness CWE-79 · XSS
Published February 9, 2022
Last update August 3, 2024

CVSS base score

What the vulnerability does

01Description

A CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability exists that could cause a web session compromise when an attacker injects and then executes arbitrary malicious JavaScript code inside the target browser. Affected Product: spaceLYnk (V2.6.2 and prior), Wiser for KNX (formerly homeLYnk) (V2.6.2 and prior), fellerLYnk (V2.6.2 and prior)

Key dates

02Disclosure timeline

February 9, 2022 CVE published
August 3, 2024 Record updated

Related vulnerabilities

04Related CVE