Описание
Cross-site scripting vulnerability in ELECOM LAN router WRC-300FEBK-R firmware v1.13 and earlier allows an attacker on the adjacent network to inject an arbitrary script via unspecified vectors.
Ссылки
- PatchThird Party Advisory
- Vendor Advisory
- PatchThird Party Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.16 (исключая)
Одновременно
cpe:2.3:o:elecom:wrc-300febk-r_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:elecom:wrc-300febk-r:-:*:*:*:*:*:*:*
EPSS
Процентиль: 36%
0.00151
Низкий
5.2 Medium
CVSS3
2.9 Low
CVSS2
Дефекты
CWE-79
Связанные уязвимости
github
почти 4 года назад
Cross-site scripting vulnerability in ELECOM LAN router WRC-300FEBK-R firmware v1.13 and earlier allows an attacker on the adjacent network to inject an arbitrary script via unspecified vectors.
EPSS
Процентиль: 36%
0.00151
Низкий
5.2 Medium
CVSS3
2.9 Low
CVSS2
Дефекты
CWE-79