Lucene search
China National Vulnerability DatabaseCNVD-2023-42976HistoryMay 06, 2023 - 12:00 a.m.
NETGEAR SRX5308 Cross-Site Scripting Vulnerability
2023-05-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
2
netgear
srx5308
vpn firewall
cross-site scripting
vulnerability
sysloginfo.servername
sensitive information
user cookies
attacker
exploitation
cnvd
0.001 Low
EPSS
Percentile
40.9%
The NETGEAR SRX5308 is a VPN firewall appliance from NETGEAR. The NETGEAR SRX5308 suffers from a cross-site scripting vulnerability that originates from an incorrect operation of the parameter sysLogInfo.serverName, which can be exploited by an attacker to obtain sensitive information such as user cookies.
Related
cve
cve
CVE-2023-2382
2023-04-28 17:15:43
prion
prion
Cross site scripting
2023-04-28 17:15:00
cvelist
cvelist
CVE-2023-2382 Netgear SRX5308 Web Management Interface cross site scripting
2023-04-28 17:00:06
nvd
nvd
CVE-2023-2382
2023-04-28 17:15:43