Lucene search

K
prionPRIOn knowledge basePRION:CVE-2024-2188
HistoryMar 05, 2024 - 1:15 p.m.

Cross site scripting

2024-03-0513:15:00
PRIOn knowledge base
www.prio-n.com
9
cross-site scripting
tp-link
archer ax50
firmware
vulnerability
javascript payload
execution

6.1 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

Cross-Site Scripting (XSS) vulnerability stored in TP-Link Archer AX50 affecting firmware version 1.0.11 build 2022052. This vulnerability could allow an unauthenticated attacker to create a port mapping rule via a SOAP request and store a malicious JavaScript payload within that rule, which could result in an execution of the JavaScript payload when the rule is loaded.

6.1 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

Related for PRION:CVE-2024-2188