Vertiv - Avocent Umg-4000 CVE

Filtered by vendor Vertiv Subscribe

Filtered by product Avocent Umg-4000

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2019-9509	1 Vertiv	2 Avocent Umg-4000, Avocent Umg-4000 Firmware	2020-10-19	3.5 LOW	5.4 MEDIUM
The web interface of the Vertiv Avocent UMG-4000 version 4.2.1.19 is vulnerable to reflected XSS in an HTTP POST parameter. The web application does not neutralize user-controllable input before displaying to users in a web page, which could allow a remote attacker authenticated with a user account to execute arbitrary code.

Vulnerabilities (CVE)