CVE-2026-10058

MEDIUM 4.8

ITP Technology｜ITS Intelligent SCADA System - Stored Cross-Site Scripting

CVSS Score

4.8

EPSS Score

0.0%

EPSS Percentile

0th

ITS Intelligent SCADA System developed by ITP Technology has a Stored Cross-Site Scripting vulnerability, allowing privileged remote attackers to inject persistent JavaScript codes that are executed in users' browsers upon page load.

CWE	CWE-79
Vendor	itp technology
Product	its intelligent scada system
Published	May 29, 2026
Last Updated	May 29, 2026

Stay Ahead of the Next One

Get instant alerts for itp technology its intelligent scada system

Be the first to know when new medium vulnerabilities affecting itp technology its intelligent scada system are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

High

User Interaction

Required

Scope

Changed

Confidentiality

Low

Integrity

Low

Availability

None

Affected Versions

ITP Technology / ITS Intelligent SCADA System

2.1

References

NVD ↗ CVE.org ↗ EPSS Data ↗

twcert.org.tw: https://www.twcert.org.tw/tw/cp-132-10941-6c082-1.html twcert.org.tw: https://www.twcert.org.tw/en/cp-139-10942-2b78b-2.html