Lucene search
China National Vulnerability DatabaseCNVD-2023-43021HistoryMay 06, 2023 - 12:00 a.m.
NETGEAR SRX5308 Cross-Site Scripting Vulnerability (CNVD-2023-43021)
2023-05-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
netgear
srx5308
firewall
cross-site scripting
vulnerability
manipulation
parameter
sensitive information
cookies
attacker
EPSS
0.001
Percentile
40.8%
The NETGEAR SRX5308 is a VPN firewall appliance from NETGEAR. The NETGEAR SRX5308 suffers from a cross-site scripting vulnerability that stems from incorrect manipulation of the parameter ntp.server2. The vulnerability can be exploited by an attacker to obtain sensitive information such as user cookies.
Related
cve
cve
CVE-2023-2391
2023-04-28 21:15:08
nvd
nvd
CVE-2023-2391
2023-04-28 21:15:08
cvelist
cvelist
CVE-2023-2391 Netgear SRX5308 Web Management Interface cross site scripting
2023-04-28 20:31:04
prion
prion
Cross site scripting
2023-04-28 21:15:00