Lucene search
MitreCVE-2022-42054HistoryOct 27, 2022 - 6:15 p.m.
CVE-2022-42054
2022-10-2718:15:11
CWE-79
mitre
web.nvd.nist.gov
26
5
cve-2022-42054
stored xss
gl.inet
goodcloud
iot
device management
security vulnerability
nvd
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
24.8%
Multiple stored cross-site scripting (XSS) vulnerabilities in GL.iNet GoodCloud IoT Device Management System Version 1.00.220412.00 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Company Name and Description text fields.
Affected configurations
Node
gl-inetgoodcloudMatch1.00.220412.00
References
Social References
More
Related
cvelist
cvelist
CVE-2022-42054
2022-10-27 00:00:00
nvd
nvd
CVE-2022-42054
2022-10-27 18:15:11
prion
prion
Cross site scripting
2022-10-27 18:15:00
CVSS3
5.4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
EPSS
0.001
Percentile
24.8%
Related for CVE-2022-42054