Insufficient output sanitization in Teltonika firmware TRB2_R_00.02.04.3 allows an unauthenticated attacker to conduct reflected cross-site scripting via a crafted ‘action’ or ‘pkg_name’ parameter.
CPE | Name | Operator | Version |
---|---|---|---|
trb245_firmware | eq | 00.02.04.03 |