13Ara
CVE-2023-49296 | Arduino Create Agent up to 1.3.5 Web Interface /certificate.crt cross site scripting (GHSA-j5hc-wx84-844h)
A vulnerability, which was classified as problematic, has been found in Arduino Create Agent up to 1.3.5. This issue affects some unknown processing of the file /certificate.crt of the component Web Interface. The manipulation leads to cross site scripting. The identification of this vulnerability is CVE-2023-49296. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.