Nixpkgs security tracker

Untriaged

Permalink CVE-2014-2370

created 1 month, 3 weeks ago

Cross-site scripting (XSS) vulnerability in the web application on Omron …

Cross-site scripting (XSS) vulnerability in the web application on Omron NS5, NS8, NS10, NS12, and NS15 HMI terminals 8.1xx through 8.68x allows remote authenticated users to inject arbitrary web script or HTML via crafted data.

References

http://ics-cert.us-cert.gov/advisories/ICSA-14-203-01 x_refsource_MISC
68836 vdb-entryx_refsource_BID
http://ics-cert.us-cert.gov/advisories/ICSA-14-203-01 x_transferredx_refsource_MISC
68836 vdb-entryx_transferredx_refsource_BID
http://ics-cert.us-cert.gov/advisories/ICSA-14-203-01 x_refsource_MISC
68836 vdb-entryx_refsource_BID
http://ics-cert.us-cert.gov/advisories/ICSA-14-203-01 x_transferredx_refsource_MISC
68836 vdb-entryx_transferredx_refsource_BID
https://www.cisa.gov/news-events/ics-advisories/icsa-14-203-01
https://automation.omron.com/en/us/products/
http://ics-cert.us-cert.gov/advisories/ICSA-14-203-01 x_transferredx_refsource_MISC
68836 vdb-entryx_transferredx_refsource_BID
https://www.cisa.gov/news-events/ics-advisories/icsa-14-203-01
https://automation.omron.com/en/us/products/
http://ics-cert.us-cert.gov/advisories/ICSA-14-203-01 x_transferredx_refsource_MISC
68836 vdb-entryx_transferredx_refsource_BID

Affected products

NS5

<8.68x

NS8

<8.68x

n/a

==n/a

NS10

<8.68x

NS12

<8.68x

NS15

<8.68x

Matching in nixpkgs

pkgs.tests.fetchpatch.fileWithSpace

None

nixos-25.11 qg6lzm9a3ns8
- nixos-25.11-small qg6lzm9a3ns8
- nixpkgs-25.11-darwin qg6lzm9a3ns8

Suggestion detail

References

Affected products

Matching in nixpkgs

pkgs.tests.fetchpatch.fileWithSpace