exploitDog

CVE-2017-15312

Опубликовано: 22 дек. 2017

Источник: nvd

CVSS3: 5.4

CVSS2: 3.5

EPSS Низкий

Описание

Huawei SmartCare V200R003C10 has a stored XSS (cross-site scripting) vulnerability in the dashboard module. A remote authenticated attacker could exploit this vulnerability to inject malicious scripts in the affected device.

Ссылки

http://www.huawei.com/en/psirt/security-notices/huawei-sn-20171201-01-smartcare-en
Vendor Advisory
http://www.huawei.com/en/psirt/security-notices/huawei-sn-20171201-01-smartcare-en
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:huawei:smartcare:v200r003c10:*:*:*:*:*:*:*

EPSS

Процентиль: 23%

0.00076

Низкий

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-pxpp-558h-fc34

CVSS3: 5.4

github

больше 3 лет назад

Huawei SmartCare V200R003C10 has a stored XSS (cross-site scripting) vulnerability in the dashboard module. A remote authenticated attacker could exploit this vulnerability to inject malicious scripts in the affected device.

EPSS

Процентиль: 23%

0.00076

Низкий

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79