CVE-2023-40143 Information

Description

An attacker with access to the Westermo Lynx web application that has the vulnerable software could introduce arbitrary JavaScript by injecting a cross-site scripting payload into the orward.0.domain\ parameter.

Reference

https://www.cisa.gov/news-events/ics-advisories/icsa-24-023-04