Stored XSS Vulnerability in Firmware Analysis and Comparison Tool v3.2

Stored XSS Vulnerability in Firmware Analysis and Comparison Tool v3.2

CVE-2021-44310 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

An issue was discovered in Firmware Analysis and Comparison Tool v3.2. With administrator privileges, the attacker could perform stored XSS attacks by inserting JavaScript and HTML code in user creation functionality.

Learn more about our User Device Pen Test.