CVE-2017-5157

Summary

An issue was discovered in Schneider Electric homeLYnk Controller, LSS100100, all versions prior to V1.5.0. The homeLYnk controller is susceptible to a cross-site scripting attack. User inputs can be manipulated to cause execution of JavaScript code.

Affected Software

VendorProductVersion RangeStatus
n/aSchneider Electric homeLYnk Controller prior to V1.5.0Schneider Electric homeLYnk Controller prior to V1.5.0affected

Weaknesses

  • Schneider Electric homeLYnk Controller XSS

ADP Enrichment

CVE Program Container

Additional References

References