Lucene search
HistoryAug 13, 2007 - 9:17 p.m.
CVE-2007-4318
cve-2007-4318
cross-site scripting
xss
zynos firmware
zyxel zywall 2
remote authenticated administrators
web script injection
html injection
security vulnerability
nvd
6 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.007 Low
EPSS
Percentile
80.5%
Cross-site scripting (XSS) vulnerability in Forms/General_1 in the management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device allows remote authenticated administrators to inject arbitrary web script or HTML via the sysSystemName parameter.
| CPE | Name | Operator | Version |
|---|---|---|---|
| zyxel:zynos | zyxel zynos | eq | 3.62 |
| zyxel:zywall_2 | zyxel zywall 2 | eq | * |
Related
prion
prion
Cross site scripting
2007-08-13 21:17:00
cvelist
cvelist
CVE-2007-4318
2007-08-13 21:00:00
6 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.007 Low
EPSS
Percentile
80.5%
Related for CVE-2007-4318