Lucene search
China National Vulnerability DatabaseCNVD-2023-43026HistoryMay 06, 2023 - 12:00 a.m.
NETGEAR SRX5308 Cross-Site Scripting Vulnerability (CNVD-2023-43026)
2023-05-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
2
netgear
srx5308
vpn
firewall
cross-site scripting
vulnerability
dhcp.secdnsipbyte2
sensitive information
attacker
user cookies
0.001 Low
EPSS
Percentile
41.0%
The NETGEAR SRX5308 is a VPN firewall appliance from NETGEAR. The NETGEAR SRX5308 suffers from a cross-site scripting vulnerability that originates from a misuse of the parameter dhcp.SecDnsIPByte2. The vulnerability can be exploited by an attacker to obtain sensitive information such as user cookies.
Related
cve
cve
CVE-2023-2384
2023-04-28 18:15:26
prion
prion
Cross site scripting
2023-04-28 18:15:00
cvelist
cvelist
CVE-2023-2384 Netgear SRX5308 Web Management Interface cross site scripting
2023-04-28 17:31:04
nvd
nvd
CVE-2023-2384
2023-04-28 18:15:26