exploitDog

CVE-2021-32302

Опубликовано: 27 фев. 2023

Источник: nvd

CVSS3: 6.1

EPSS Низкий

Описание

Cross Site Scripting vulnerability in IRZ Electronics RUH2 GSM router allows attacker to obtain sensitive information via the Upload File parameter.

Ссылки

http://irz.com
Not Applicable
http://ruh2.com
Product
https://s4nsec.github.io/2023/02/20/RUH2-GSM-Router-XSS-vulnerabilities.html
Exploit
Third Party Advisory
http://irz.com
Not Applicable
http://ruh2.com
Product
https://s4nsec.github.io/2023/02/20/RUH2-GSM-Router-XSS-vulnerabilities.html
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:irz:ruh2_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:irz:ruh2:-:*:*:*:*:*:*:*

EPSS

Процентиль: 30%

0.00112

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79

Связанные уязвимости

GHSA-qgw4-v4wc-4ghq

CVSS3: 6.1

github

почти 3 года назад

Cross Site Scripting vulnerability in IRZ Electronics RUH2 GSM router allows attacker to obtain sensitive information via the Upload File parameter.

EPSS

Процентиль: 30%

0.00112

Низкий

6.1 Medium

CVSS3

Дефекты

CWE-79