Описание
Cross-site scripting (XSS) vulnerability in the NetComm NB16WV-02 router with firmware NB16WV_R0.09 allows remote authenticated users to inject arbitrary web script or HTML via the S801F0334 parameter to hdd.htm.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:netcomm:nb16wv-02_firmware:nb16wv_r0.09:*:*:*:*:*:*:*
cpe:2.3:h:netcomm:nb16wv-02:-:*:*:*:*:*:*:*
EPSS
Процентиль: 50%
0.00268
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 5.4
github
больше 3 лет назад
Cross-site scripting (XSS) vulnerability in the NetComm NB16WV-02 router with firmware NB16WV_R0.09 allows remote authenticated users to inject arbitrary web script or HTML via the S801F0334 parameter to hdd.htm.
EPSS
Процентиль: 50%
0.00268
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79