Lucene search

K
cve[email protected]CVE-2014-10018
HistoryJan 13, 2015 - 11:59 a.m.

CVE-2014-10018

2015-01-1311:59:26
CWE-79
web.nvd.nist.gov
16
cve-2014-10018
cross-site scripting
xss
teracom
t2-b-gawv1.4u10y-bi
webconfig
wlan
modem

5.9 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

60.9%

Cross-site scripting (XSS) vulnerability in webconfig/wlan/country.html/country in the Teracom T2-B-Gawv1.4U10Y-BI modem allows remote attackers to inject arbitrary web script or HTML via the essid parameter.

Affected configurations

NVD
Node
teracomt2-b-gawv1.4u10y-biMatch-

5.9 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

60.9%

Related for CVE-2014-10018