CVE-2023-45796

HIGH 8.1

XSS vulnerability in Pilz PASvisu and PMI v8xx

CVSS Score

8.1

EPSS Score

0.0%

EPSS Percentile

0th

A stored cross-site scripting vulnerability in the Runtime component of Pilz PASvisu before 1.14.1 and PMI v8xx up to and including 2.0.33992 allows a low-privileged remote unauthenticated attacker to manipulate process data with potential impact on integrity and/or availability.

CWE	CWE-79
Vendor	pilz
Product	pmi v8xx
Published	Jun 22, 2026
Last Updated	Jun 22, 2026

Stay Ahead of the Next One

Get instant alerts for pilz pmi v8xx

Be the first to know when new high vulnerabilities affecting pilz pmi v8xx are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

High

Affected Versions

Pilz / PMI v8xx

0.0.0 ≤ 2.0.33992

Pilz / PASvisu

0.0.0 < 1.14.1

References

NVD ↗ CVE.org ↗ EPSS Data ↗

certvde.com: https://certvde.com/en/advisories/VDE-2023-050/