cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-14502,https://securityvulnerability.io/vulnerability/CVE-2020-14502,Stored XSS Vulnerability in 1734-AENTR Communication Module by Rockwell Automation,"The 1734-AENTR communication module's web interface contains a vulnerability that allows remote, unauthenticated attackers to exploit stored XSS. An attacker can inject malicious scripts into the interface, which could subsequently execute on the page, allowing manipulation of content on the homepage. This could lead to unauthorized actions or misrepresentation of data displayed to users.",Rockwell Automation,1734-aentr,6.1,MEDIUM,0.0005499999970197678,false,,false,false,false,,,false,false,,2022-02-24T19:15:00.000Z,0
CVE-2020-14504,https://securityvulnerability.io/vulnerability/CVE-2020-14504,Authentication Flaw in 1734-AENTR Communication Module by Rockwell Automation,"The 1734-AENTR communication module's web interface fails to adequately handle authentication for HTTP POST requests. This flaw allows a remote, unauthenticated attacker to exploit the system by sending specially crafted requests, potentially leading to unauthorized modifications of the configuration settings. Organizations using this module should take immediate steps to address the vulnerability to safeguard their systems against potential exploitation.",Rockwell Automation,1734-aentr,5.3,MEDIUM,0.0006300000241026282,false,,false,false,false,,,false,false,,2022-02-24T19:15:00.000Z,0