An unauthenticated remote attacker may use stored XSS vulnerability to obtain information from a user or reboot the affected device once.
An unauthenticated remote attacker may use stored XSS vulnerability to obtain information from a user or reboot the affected device once.
| Vendor | Product | Versions |
|---|---|---|
| Pepperl+Fuchs | ICDM | RX/TCP-DB9/RJ45-DIN — SocketServer |
| Pepperl+Fuchs | ICDM | RX/TCP-ST/RJ45-DIN — SocketServer |
| Pepperl+Fuchs | ICDM | RX/TCP-4DB9/2RJ45-DIN — SocketServer |
| Pepperl+Fuchs | ICDM | RX/TCP-DB9/RJ45-PM — SocketServer |
| Pepperl+Fuchs | ICDM | RX/TCP-2DB9/RJ45-DIN — SocketServer |
| Pepperl+Fuchs | ICDM | RX/TCP-2ST/RJ45-DIN — SocketServer |
| Pepperl+Fuchs | ICDM | RX/TCP-4DB9/2RJ45-PM — SocketServer |
| Pepperl+Fuchs | ICDM | RX/TCP-8DB9/2RJ45-PM — SocketServer |
| Pepperl+Fuchs | ICDM | RX/TCP-16RJ45/RJ45-RM — SocketServer |
| Pepperl+Fuchs | ICDM | RX/TCP-16DB9/RJ45-RM — SocketServer |
| Pepperl+Fuchs | ICDM | RX/TCP-32RJ45/RJ45-RM — SocketServer |
| Pepperl+Fuchs | ICDM | RX/TCP-DB9/RJ45-PM2 — SocketServer |
| Pepperl+Fuchs | ICDM | RX/TCP-16RJ45/2RJ45-PM — SocketServer |
| Pepperl+Fuchs | ICDM | RX/PN-DB9/RJ45-DIN — PROFINET |
| Pepperl+Fuchs | ICDM | RX/PN-ST/RJ45-DIN — PROFINET |
| Pepperl+Fuchs | ICDM | RX/PN-4DB9/2RJ45-DIN — PROFINET |
| Pepperl+Fuchs | ICDM | RX/PN-DB9/RJ45-PM — PROFINET |
| Pepperl+Fuchs | ICDM | RX/PN-2DB9/RJ45-DIN — PROFINET |
| Pepperl+Fuchs | ICDM | RX/PN-2ST/RJ45-DIN — PROFINET |
| Pepperl+Fuchs | ICDM | RX/PN1-DB9/RJ45-PM — PROFINET/Modbus |
| Pepperl+Fuchs | ICDM | RX/PN1-DB9/RJ45-DIN — PROFINET/Modbus |
| Pepperl+Fuchs | ICDM | RX/PN1-ST/RJ45-DIN — PROFINET/Modbus |
| Pepperl+Fuchs | ICDM | RX/PN1-2DB9/RJ45-DIN — PROFINET/Modbus |
| Pepperl+Fuchs | ICDM | RX/PN1-4DB9/2RJ45-DIN — PROFINET/Modbus |
| Pepperl+Fuchs | ICDM | RX/PN1-2ST/RJ45-DIN — PROFINET/Modbus |
| Pepperl+Fuchs | ICDM | RX/EN-DB9/RJ45-DIN — EtherNet/IP |
| Pepperl+Fuchs | ICDM | RX/EN-ST/RJ45-DIN — EtherNet/IP |
| Pepperl+Fuchs | ICDM | RX/EN-4DB9/2RJ45-DIN — EtherNet/IP |
| Pepperl+Fuchs | ICDM | RX/EN-DB9/RJ45-PM — EtherNet/IP |
| Pepperl+Fuchs | ICDM | RX/EN-2DB9/RJ45-DIN — EtherNet/IP |
| Pepperl+Fuchs | ICDM | RX/EN-2ST/RJ45-DIN — EtherNet/IP |
| Pepperl+Fuchs | ICDM | RX/EN1-DB9/RJ45-PM — EIP/Modbus |
| Pepperl+Fuchs | ICDM | RX/EN1-DB9/RJ45-DIN — EIP/Modbus |
| Pepperl+Fuchs | ICDM | RX/EN1-ST/RJ45-DIN — EIP/Modbus |
| Pepperl+Fuchs | ICDM | RX/EN1-2DB9/RJ45-DIN — EIP/Modbus |
| Pepperl+Fuchs | ICDM | RX/EN1-4DB9/2RJ45-DIN — EIP/Modbus |
| Pepperl+Fuchs | ICDM | RX/EN1-2ST/RJ45-DIN — EIP/Modbus |
| Pepperl+Fuchs | ICDM | RX/MOD-DB9/RJ45-DIN — Modbus Router, Modbus Server, Modbus TCP |
| Pepperl+Fuchs | ICDM | RX/MOD-ST/RJ45-DIN — Modbus Router, Modbus Server, Modbus TCP |
| Pepperl+Fuchs | ICDM | RX/MOD-4DB9/2RJ45-DIN — Modbus Router, Modbus Server, Modbus TCP |
| Pepperl+Fuchs | ICDM | RX/MOD-DB9/RJ45-PM — Modbus Router, Modbus Server, Modbus TCP |
| Pepperl+Fuchs | ICDM | RX/MOD-2DB9/RJ45-DIN — Modbus Router, Modbus Server, Modbus TCP |
| Pepperl+Fuchs | ICDM | RX/MOD-2ST/RJ45-DIN — Modbus Router, Modbus Server, Modbus TCP |
| Pepperl+Fuchs | ICDM | RX/MOD-16RJ45/2RJ45-PM — Modbus Router, Modbus Server, Modbus TCP |
Not currently listed on the CISA Known Exploited Vulnerabilities (KEV) catalog. EPSS is the best forward-looking signal — see the EPSS row above.
For the full vendor write-up, exploit chains, and reference implementations, see the references list in section 09.
Open the Sigma generator with a pre-filled prompt for this CVE to draft a starting detection in your stack of choice:
No directly-cited follow-up CVEs in the KB record for this advisory. The references list in section 09 carries the vendor cross-references.