CVE-2020-10630

Summary

SAE IT-systems FW-50 Remote Telemetry Unit (RTU). The software does not neutralize or incorrectly neutralizes user-controllable input before it is placed in the output used as a webpage that is served to other users.

Affected Software

VendorProductVersion RangeStatus
n/aSAE IT-systems FW-50 Remote Telemetry Unit (RTU)FW-50 RTU, Series: 5 Seriesaffected
n/aSAE IT-systems FW-50 Remote Telemetry Unit (RTU)CPU-type: CPU-5Baffected
n/aSAE IT-systems FW-50 Remote Telemetry Unit (RTU)Hardware Revision: 2affected
n/aSAE IT-systems FW-50 Remote Telemetry Unit (RTU)CPLD Revision: 6affected

Weaknesses

  • CWE-79: IMPROPER NEUTRALIZATION OF INPUT DURING WEB PAGE GENERATION ('CROSS-SITE SCRIPTING') CWE-79

ADP Enrichment

CVE Program Container

Additional References

References