Описание
Cross-site scripting vulnerability in ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior) allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors.
Ссылки
- Third Party Advisory
- Vendor Advisory
- Third Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.02.9 (включая)
Одновременно
cpe:2.3:o:elecom:wrh-733gbk_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wrh-733gbk:-:*:*:*:*:*:*:*
Конфигурация 2Версия до 1.02.9 (включая)
Одновременно
cpe:2.3:o:elecom:wrh-733gwh_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wrh-733gwh:-:*:*:*:*:*:*:*
EPSS
Процентиль: 43%
0.00209
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79
Связанные уязвимости
github
около 4 лет назад
Cross-site scripting vulnerability in ELECOM LAN routers (WRH-733GBK firmware v1.02.9 and prior and WRH-733GWH firmware v1.02.9 and prior) allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors.
EPSS
Процентиль: 43%
0.00209
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79