Lucene search
HistoryOct 03, 2022 - 4:20 p.m.
CVE-2014-9518
cve-2014-9518
cross-site scripting
xss
d-link router
dir-655
security vulnerability
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
6 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
53.3%
Cross-site scripting (XSS) vulnerability in login.cgi in D-Link router DIR-655 (rev Bx) with firmware before 2.12b01 allows remote attackers to inject arbitrary web script or HTML via the html_response_page parameter.
Affected configurations
Node
d-linkdir-655_firmwareRange≤2.11na
d-linkdir-655Matchbx
| CPE | Name | Operator | Version |
|---|---|---|---|
| d-link:dir-655_firmware | d-link dir-655 firmware | le | 2.11na |
| d-link:dir-655 | d-link dir-655 | eq | bx |
Related
nvd
nvd
CVE-2014-9518
2015-01-05 20:59:12
cvelist
cvelist
CVE-2014-9518
2022-10-03 16:20:41
prion
prion
Cross site scripting
2015-01-05 20:59:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
6 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
53.3%
Related for CVE-2014-9518