exploitDog

CVE-2021-38702

Опубликовано: 17 авг. 2021

Источник: nvd

CVSS3: 6.1

CVSS2: 4.3

EPSS Средний

Описание

Cyberoam NetGenie C0101B1-20141120-NG11VO devices through 2021-08-14 allow tweb/ft.php?u=[XSS] attacks.

Ссылки

http://packetstormsecurity.com/files/163859/Cyberoam-NetGenie-Cross-Site-Scripting.html
Exploit
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2021/Aug/20
Exploit
Mailing List
Third Party Advisory
http://www.cyberoamworks.com/NetGenie-Home.asp
Product
Vendor Advisory
https://seclists.org/fulldisclosure/2021/Aug/20
Exploit
Mailing List
Third Party Advisory
http://packetstormsecurity.com/files/163859/Cyberoam-NetGenie-Cross-Site-Scripting.html
Exploit
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2021/Aug/20
Exploit
Mailing List
Third Party Advisory
http://www.cyberoamworks.com/NetGenie-Home.asp
Product
Vendor Advisory
https://seclists.org/fulldisclosure/2021/Aug/20
Exploit
Mailing List
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:cyberoamworks:netgenie_c0101b1-20141120-ng11vo_firmware:*:*:*:*:*:*:*:*

Версия до 2021-08-14 (включая)

cpe:2.3:h:cyberoamworks:netgenie_c0101b1-20141120-ng11vo:-:*:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.469

Средний

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-4w7p-gxj7-3x2q

github

больше 3 лет назад

Cyberoam NetGenie C0101B1-20141120-NG11VO devices through 2021-08-14 allow tweb/ft.php?u=[XSS] attacks.

EPSS

Процентиль: 98%

0.469

Средний

6.1 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-79