Описание
Multiple stored cross-site scripting (XSS) vulnerabilities in Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the wifi_sta_ssid or wifi_ap_ssid parameters.
Ссылки
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:audi:universal_traffic_recorder_firmware:1.52:*:*:*:*:*:*:*
cpe:2.3:h:audi:universal_traffic_recorder:2.0:*:*:*:*:*:*:*
EPSS
Процентиль: 17%
0.00052
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 5.4
github
5 месяцев назад
Multiple stored cross-site scripting (XSS) vulnerabilities in Audi UTR 2.0 Universal Traffic Recorder 2.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the wifi_sta_ssid or wifi_ap_ssid parameters.
EPSS
Процентиль: 17%
0.00052
Низкий
5.4 Medium
CVSS3
Дефекты
CWE-79