Описание
Cross Site Scripting (XSS) vulnerability in Cobham SAILOR VSAT Ku v.164B019, allows a remote attacker to execute arbitrary code via a crafted script to the rstat, sender, and recipients' parameters of the sub_21D24 function in the acu_web file.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:cobham:sailor_600_vsat_ku_firmware:164_build019:*:*:*:*:*:*:*
cpe:2.3:h:cobham:sailor_600_vsat_ku:-:*:*:*:*:*:*:*
EPSS
Процентиль: 24%
0.00084
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 6.1
github
почти 2 года назад
Cross Site Scripting (XSS) vulnerability in Cobham SAILOR VSAT Ku v.164B019, allows a remote attacker to execute arbitrary code via a crafted script to the rstat, sender, and recipients' parameters of the sub_21D24 function in the acu_web file.
EPSS
Процентиль: 24%
0.00084
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79