Lucene search
China National Vulnerability DatabaseCNVD-2023-43027HistoryMay 06, 2023 - 12:00 a.m.
NETGEAR SRX5308 Cross-Site Scripting Vulnerability (CNVD-2023-43027)
2023-05-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
6
netgear
srx5308
cross-site scripting
vulnerability
ipsecikepolicy
ikepolicyname
user cookies
EPSS
0.001
Percentile
40.8%
The NETGEAR SRX5308 is a VPN firewall appliance from NETGEAR. The NETGEAR SRX5308 suffers from a cross-site scripting vulnerability that originates from an incorrect operation of the parameter IpsecIKEPolicy.IKEPolicyName. The vulnerability can be exploited by an attacker to obtain sensitive information such as user cookies.
Related
cve
cve
CVE-2023-2385
2023-04-28 18:15:26
nvd
nvd
CVE-2023-2385
2023-04-28 18:15:26
cvelist
cvelist
CVE-2023-2385 Netgear SRX5308 Web Management Interface cross site scripting
2023-04-28 18:00:05
prion
prion
Cross site scripting
2023-04-28 18:15:00