3 matches found
CVE-2018-9081
creationtimestamp| type| source ---|---|--- 2018-10-03 15:26:43+00:00| seen| MISP/5bb4df32-f218-45d9-aa7e-1dc00a021402...
CVE-2018-9081 Iomega and LenovoEMC NAS Web UI Vulnerabilities
For some Iomega, Lenovo, LenovoEMC NAS devices versions 4.1.402.34662 and earlier, the file name used for assets accessible through the Content Viewer application are vulnerable to self cross-site scripting self-XSS. As a result, adversaries can add files to shares accessible from the Content...
CVE-2018-9081
CVE-2018-9081 affects Iomega, LenovoEMC NAS devices (4.1.402.34662 and earlier) with Content Viewer assets vulnerability enabling self-XSS via file names. Attackers could chain vulnerabilities (token theft, CSRF) to gain unauthorized shell access or escalate privilege on affected devices, impacti...