5 matches found
CVE-2021-37378
Cross Site Scripting XSS vulnerability in Teradek Cube and Cube Pro firmware version 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any...
CVE-2021-37378
Cross Site Scripting XSS vulnerability in Teradek Cube and Cube Pro firmware version 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any...
Cross site scripting
UNSUPPORTED WHEN ASSIGNED Cross Site Scripting XSS vulnerability in Teradek Cube and Cube Pro firmware version 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and wil...
PT-2023-12315 · Teradek · Teradek Cube Pro +1
Name of the Vulnerable Software and Affected Versions: Teradek Cube and Cube Pro versions 7.3.x and earlier Description: The issue allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. This is a result of a Cross Site Scripting XSS vulnerability...
CVE-2021-37378
CVE-2021-37378 affects Teradek Cube and Cube Pro firmware 7.3.x and earlier, via a Cross Site Scripting (XSS) flaw in the Friendly Name field of System Information Settings. The underlying issue permits arbitrary code execution by an attacker who can access the affected device over the network (p...