CVE-2018-25035 in TCW710المعلومات

الملخص

بحسب MITRE • 12/06/2022

A vulnerability, which was classified as problematic, was found in Thomson TCW710 ST5D.10.05. Affected is an unknown function of the file /goform/RGFirewallEL. The manipulation of the argument EmailAddress/SmtpServerName with the input >alert(1) as part of POST Request leads to cross site scripting (Persistent). It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

VulDB

حجز

04/06/2022

إفشاء

12/06/2022

الاعتدال

تمت الموافقة

إدخال

VDB-126696

CPE

جاهز

CWE

CWE-80 (مؤكد)

استغلال

تحميل

CVSS

5.4 (NVD)

EPSS

0.00206

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2018-25035
NVD	https://nvd.nist.gov/vuln/detail/CVE-2018-25035
CVE Details	https://www.cvedetails.com/cve/CVE-2018-25035/

التالي ▸نظرة عامة ◂ السابق

Want to know what is going to be exploited?

We predict KEV entries!