How severe is CVE-2023-2876?

CVE-2023-2876 has a CVSS v3 score of 3.1 (LOW).

CVE-2023-2876

3.1LOW

Sensitive Cookie Without 'HttpOnly' Flag vulnerability in ABB REX640 PCL1 (firmware modules), ABB REX640 PCL2 (Firmware modules), ABB REX640 PCL3 (firmware modules) allows Cross-Site Scripting (XSS).T

Published: 6/13/2023Updated: 11/21/2024

Description

Sensitive Cookie Without 'HttpOnly' Flag vulnerability in ABB REX640 PCL1 (firmware modules), ABB REX640 PCL2 (Firmware modules), ABB REX640 PCL3 (firmware modules) allows Cross-Site Scripting (XSS).This issue affects REX640 PCL1: from 1.0;0 before 1.0.8; REX640 PCL2: from 1.0;0 before 1.1.4; REX640 PCL3: from 1.0;0 before 1.2.1.

AI AnalysisPowered by AI

Affected Products

abbrex640_pcl1_firmware

abbrex640_pcl1

abbrex640_pcl2_firmware

abbrex640_pcl2

abbrex640_pcl3_firmware

abbrex640_pcl3

References

https://search.abb.com/library/Download.aspx?DocumentID=2NGA001423&LanguageCode=en&DocumentPartId=&Action=Launch
Vendor Advisory
https://search.abb.com/library/Download.aspx?DocumentID=2NGA001423&LanguageCode=en&DocumentPartId=&Action=Launch
Vendor Advisory