An issue was discovered in Comcast Defined Technologies microeisbss through 2021. An attacker can inject a stored XSS payload in the Device ID field under Inventory Management to achieve Remote Code Execution and privilege escalation..
Products Affected
| Vendor | Product | Version |
|---|---|---|
| xfinity | comcast_defined_technologies_microeisbss | * |