JVN#01537659: WN-AC1167GR vulnerable to cross-site scripting

2017-04-14T00:00:00
ID JVN:01537659
Type jvn
Reporter Japan Vulnerability Notes
Modified 2017-04-14T00:00:00

Description

## Description

WN-AC1167GR provided by I-O DATA DEVICE, INC. is a wireless LAN router. WN-AC1167GR contains a stored cross-site scripting vulnerability (CWE-79).

## Impact

If a user accesses a malicious URL while logged in, an arbitrary script may be executed on the user's web browser.

## Solution

Update the Firmware
Apply the latest firmware update according to the information provided by the developer.

## Products Affected

  • WN-AC1167GR firmware version 1.04 and earlier