Описание
An XSS attack can be performed by changing the MOTD banner and pointing the victim to the "terminal_tool.cgi" path. It can be used together with the vulnerability CVE-2023-49255.
Ссылки
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2310271149 (исключая)
Одновременно
cpe:2.3:o:hongdian:h8951-4g-esp_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:hongdian:h8951-4g-esp:-:*:*:*:*:*:*:*
EPSS
Процентиль: 23%
0.00076
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79
Связанные уязвимости
CVSS3: 6.1
github
около 2 лет назад
An XSS attack can be performed by changing the MOTD banner and pointing the victim to the "terminal_tool.cgi" path. It can be used together with the vulnerability CVE-2023-49255.
EPSS
Процентиль: 23%
0.00076
Низкий
6.1 Medium
CVSS3
Дефекты
CWE-79
CWE-79