Cross-Site Scripting Vulnerability in Schneider Electric PowerChute
CVE-2011-4263

Currently unrated

Key Information:

Vendor: Apc
Status: Powerchute
Vendor: CVE Published:; 7 December 2011

What is CVE-2011-4263?

The vulnerability in Schneider Electric's PowerChute Business Edition versions before 8.5 allows remote attackers to execute arbitrary web scripts or HTML code on user browsers. This could lead to unauthorized access to sensitive data or manipulation of user sessions. Attack vectors remain unspecified, highlighting the need for users to apply recommended security updates promptly to mitigate potential risks.

References

http://jvndb.jvn.jp/jvndb/JVNDB-2011-000100

third-party-advisoryx_refsource_JVNDB

http://jvn.jp/en/jp/JVN61695284/index.html

third-party-advisoryx_refsource_JVN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Dec 7, 2011

CVE-2011-4263 Data

JSON

Apc

What is CVE-2011-4263?

References

Timeline