Cmc Pu Iii 7030.000
Approved changes feed: RSS · Atom
cpe:2.3:h:rittal:cmc_pu_iii_7030.000:*:*:*:*:*:*:*:*
part: h version: * update: *
| Vendor | Rittal (e20b98b2-76cf-5d0b-9cbf-814cb905f00d) |
|---|---|
| Product | Cmc Pu Iii 7030.000 (6b8226cb-1bfb-5d7e-bf7b-12a31fc06f39) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-19393 |
not_vulnerable | 2026-06-03 14:40:04.593195 |
Details available
The Web application on Rittal CMC PU III 7030.000 V3.00 V3.11.00_2 to V3.15.70_4 devices fails to sanitize user input on the system configurations page. This allows an attacker to backdoor the device with HTML and browser-interpreted content (such as JavaScript or other client-side scripts) as the content is always displayed after and before login. Persistent XSS allows an attacker to modify displayed content or to change the victim's information. Successful exploitation requires access to the web management interface, either with valid credentials or a hijacked session.
Published: 2020-10-01T16:55:05.000Z
Updated: 2024-08-05T02:16:47.021Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.