Security Advisory

CVE-2021-41557

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-12-15 06:07:40

Last updated 2024-08-04 03:15:29

Assigner mitre

State PUBLISHED

Description

Sofico Miles RIA 2020.2 Build 127964T is affected by Stored Cross Site Scripting (XSS). An attacker with access to a user account of the RIA IT or the Fleet role can create a crafted work order in the damage reports section (or change existing work orders). The XSS payload is in the work order number.

← Browse all CVEs View on cve.org ↗