2 matches found
CVE-2019-19941
Missing hostname validation in Swisscom Centro Grande before 6.16.12 allows a remote attacker to inject its local IP address as a domain entry in the DNS service of the router via crafted hostnames in DHCP requests, causing XSS...
CVE-2019-19941
CVE-2019-19941 affects Swisscom Centro Grande routers present before version 6.16.12. The flaw is missing hostname validation in the DNS service, allowing a remote attacker to craft DHCP hostnames that inject the attacker's local IP as a domain entry, which can result in cross-site scripting via ...