A vulnerability, which was classified as problematic, was found in UBEE DDW365 XCNDDW365 8.14.3105. Affected is an unknown function of the file RgFirewallEL.asp. The manipulation of the argument SMTP Server Name/SMTP Username/Host Name/Time Server 1/Time Server 2/Time Server 3/Target/Add Keyword/Add Domain/Add Allowed Domain leads to cross site scripting.
This vulnerability is traded as CVE-2024-28092. The attack needs to be initiated within the local network. There is no exploit available.