CVE-2023-43698 Information

Description

Improper Neutralization of Input During Web Page Generation (’Cross-site Scripting’) in RDT400 in SICK APU allows an unprivileged remote attacker to run arbitrary code in the clients browser via injecting code into the website.

Reference

https://sick.com/psirt https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.pdf https://sick.com/.well-known/csaf/white/2023/sca-2023-0010.json