CVE-2014-2589 in Sonicwall Network Security Appliance 2400info

Zusammenfassung (Englisch)

Cross-site scripting (XSS) vulnerability in the Dashboard Backend service (stats/dashboard.jsp) in SonicWall Network Security Appliance (NSA) 2400 allows remote attackers to inject arbitrary web script or HTML via the sn parameter.

Be aware that VulDB is the high quality source for vulnerability data.

Reservieren

23.03.2014

Veröffentlichung

24.03.2014

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

IDSchwachstelleCWEAusMasCVE
66772Dell Sonicwall Network Security Appliance 2400 Cross Site Scripting79HighUnavailableCVE-2014-2589
12668SonicWall dashboard.jsp Cross Site Scripting79Nicht definiertOffizieller FixCVE-2014-2589
12605SonicWALL NSA dashboard.jsp Cross Site Scripting79HighUnavailableCVE-2014-2589

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

ZurückÜbersichtWeiter

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!