SUBNET PowerSYSTEM Center versions 2020 U10 and prior contain a cross-site scripting vulnerability that may allow an attacker to inject malicious code into report header graphic files that could propagate out of the system and reach users who are subscribed to email notifications.
History

Mon, 09 Dec 2024 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2023-06-19T20:18:36.913Z

Updated: 2024-12-09T20:48:27.468Z

Reserved: 2023-05-25T16:04:56.572Z

Link: CVE-2023-32659

cve-icon Vulnrichment

Updated: 2024-08-02T15:25:36.325Z

cve-icon NVD

Status : Modified

Published: 2023-06-19T21:15:42.113

Modified: 2024-11-21T08:03:47.627

Link: CVE-2023-32659

cve-icon Redhat

No data.