Lucene search
PRIOn knowledge basePRION:CVE-2020-8170HistoryMay 26, 2020 - 4:15 p.m.
Cross site scripting
2020-05-2616:15:00
PRIOn knowledge base
www.prio-n.com
9
We have recently released new version of AirMax AirOS firmware v6.3.0 for TI, XW and XM boards that fixes vulnerabilities found on AirMax AirOS v6.2.0 and prior TI, XW and XM boards, according to the description below:Multiple end-points with parameters vulnerable to reflected cross site scripting (XSS), allowing attackers to abuse the user’ session information and/or account takeover of the admin user.Mitigation:Update to the latest AirMax AirOS firmware version available at the AirMax download page.
Related
cvelist
cvelist
CVE-2020-8170
2020-05-26 15:37:27
hackerone
hackerone
Ubiquiti Inc.: Reflected XSS in Nanostation Loco M2 - AirOS ver=6.1.7
2018-07-25 05:23:27
Ubiquiti Inc.: 3x Reflected XSS vectors for services.cgi (XM.v6.1.6, build 32290)
2018-03-30 15:29:46
Ubiquiti Inc.: Local File Disclosure (+XSS+CSRF) in AirOS 6.2.0 devices
2019-07-27 04:12:17
nvd
nvd
CVE-2020-8170
2020-05-26 16:15:12
cve
cve
CVE-2020-8170
2020-05-26 16:15:12