CVE-2022-48192 HIGH

CVE-2022-48192: Cross-site scripting vulnerability in Softing smartLink SW-HT

Vendor N/A
Product n/a
Published November 6, 2023
Last update September 5, 2024

CVSS base score

7.2/10
Attack vector Network
Attack complexity Low
Privileges required High
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Cross-site Scripting vulnerability in Softing smartLink SW-HT before 1.30, which allows an attacker to execute a dynamic script (JavaScript, VBScript) in the context of the application.

Key dates

02Disclosure timeline

November 6, 2023 CVE published
September 5, 2024 Record updated