CVE-2022-48192

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Nov 6, 2023

Updated: Nov 14, 2023

CWE ID 79

Summary

CVE-2022-48192 is a Cross-Site Scripting (XSS) vulnerability affecting Softing's smartLink SW-HT version prior to 1.30. An attacker can exploit this issue by injecting dynamic scripts, such as JavaScript or VBScript, into the application, thereby gaining the ability to execute malicious code in the context of the targeted user. This vulnerability poses a significant risk as it can lead to data theft, unauthorized access, and other forms of cyber attacks. Users are strongly advised to update their smartLink SW-HT software to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tTIgGZ
https://www.cve.org/CVERecord?id=CVE-2022-48192
https://nvd.nist.gov/vuln/detail/CVE-2022-48192

Back to Vulnerability Database

CVE-2022-48192

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations