← volver
CVE-2024-3776

Netvision airPASS - Reflected XSS

CVSS 6.1 MEDIUMEPSS 0.4%CWE-79
The parameter used in the login page of Netvision airPASS is not properly filtered for user input. An unauthenticated remote attacker can insert JavaScript code to the parameter for Reflected Cross-site scripting attacks.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Productos afectados
Netvision · airPASS

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://www.twcert.org.tw/tw/cp-132-7730-584e3-1.html