CVE-2020-16208

The affected product is vulnerable to cross-site request forgery, which may allow an attacker to modify different configurations of a device by luring an authenticated user to click on a crafted link on the N-Tron 702-W / 702M12-W all versions...

CVE-2020-16206

The affected product is vulnerable to stored cross-site scripting, which may allow an attacker to remotely execute arbitrary code to gain access to sensitive data on the N-Tron 702-W / 702M12-W all versions...

CVE-2020-16210

The affected product is vulnerable to reflected cross-site scripting, which may allow an attacker to remotely execute arbitrary code and perform actions in the context of an attacked user on the N-Tron 702-W / 702M12-W all versions...

Cross site scripting

The affected product is vulnerable to reflected cross-site scripting, which may allow an attacker to remotely execute arbitrary code and perform actions in the context of an attacked user on the N-Tron 702-W / 702M12-W all versions...

Cross site request forgery (csrf)

The affected product is vulnerable to cross-site request forgery, which may allow an attacker to modify different configurations of a device by luring an authenticated user to click on a crafted link on the N-Tron 702-W / 702M12-W all versions...

Cross site scripting

The affected product is vulnerable to stored cross-site scripting, which may allow an attacker to remotely execute arbitrary code to gain access to sensitive data on the N-Tron 702-W / 702M12-W all versions...

CVE-2020-16210

CVE-2020-16210 affects Red Lion N-Tron 702-W / 702M12-W (all versions). The vulnerability is a reflected cross‑site scripting flaw in the Web UI that may allow an attacker to execute arbitrary code in the context of an authenticated user, potentially enabling remote control of the device. CVSS v3...

CVE-2020-16208

CVE-2020-16208 affects Red Lion N-Tron 702-W / 702M12-W. The vulnerability is Cross-Site Request Forgery (CSRF) that could allow an attacker to modify device configurations by luring an authenticated user to click a crafted link. NVD lists CVSSv3 base score 8.8 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:...

CVE-2020-16206

CVE-2020-16206 affects Red Lion N-Tron 702-W and 702M12-W (all versions). It is a stored cross-site scripting vulnerability (CWE-79) caused by improper neutralization of input during web page generation, allowing an attacker to remotely execute arbitrary code and access sensitive data. Several so...

CVE-2020-16206

The affected product is vulnerable to stored cross-site scripting, which may allow an attacker to remotely execute arbitrary code to gain access to sensitive data on the N-Tron 702-W / 702M12-W all versions...

Red Lion N-Tron 702-W/702M12-W Unspecified Interface Vulnerability

The Red Lion N-Tron 702-W/702M12-W is a high voltage Ethernet switch product. An undocumented interface vulnerability exists in the Red Lion N-Tron 702-W/702M12-W, which can be exploited by an attacker to submit a special request to execute arbitrary commands with ROOT privileges...

Red Lion N-Tron 702-W/702M12-W Cross-Site Scripting Vulnerability

The Red Lion N-Tron 702-W/702M12-W is a high voltage Ethernet switch product. A cross-site scripting vulnerability exists in the Red Lion N-Tron 702-W/702M12-W, which can be exploited by a remote attacker to execute arbitrary code and perform actions in the context of the attacked user...