CVE-2020-6973 Information

Description

Digi International ConnectPort LTS 32 MEI Firmware Version 1.4.3 (82002228_K 08/09/2018) bios Version 1.2. Multiple cross-site scripting vulnerabilities exist that could allow an attacker to cause a denial-of-service condition.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:N/I:N/A:H

Reference

https://www.us-cert.gov/ics/advisories/icsa-20-042-13

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction Required

HIGH

Scope

REQUIRED

Confidentiality Impact

CHANGED

Integrity Impact

NONE

Availability Impact

NONE

Base Score

HIGH

Base Severity

6.2