CVE-2022-40190

SAUTER Controls moduWeb firmware version 2.7.1 is vulnerable to reflective cross-site scripting (XSS). The web application does not adequately sanitize request strings of malicious JavaScript. An attacker utilizing XSS could then execute malicious code in users’ browsers and steal sensitive information, including user credentials.

Link	Resource
https://www.cisa.gov/uscert/ics/advisories/icsa-22-300-02	Third Party Advisory US Government Resource

Configuration 1

cpe:2.3:o:sauter-controls:moduweb_firmware:2.7.1:*:*:*:*:*:*:*

---

Published : 2022-10-31 09:15

Updated : 2022-11-02 02:13

---

NVD link : CVE-2022-40190

Mitre link : CVE-2022-40190

Moduweb Firmware

Sauter-controls

CWE-79