|Article No°||Product Name||Affected Version(s)|
|REX 200||< 7.3.2|
|REX 250||< 7.3.2|
A stored XXS vulnerability has been found in REX 200 and REX 250 in all versions before 7.3.2.
A remote, authenticated attacker can fully compromise the browser session of all users accessing the devices web interface.
Update to 7.3.2
CERT@VDE coordinated with Helmholz.