Lucene search
+L

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:44 p.m.9 views

CVE-2021-32019

There is missing input validation of host names displayed in OpenWrt before 19.07.8. The Connection Status page of the luci web-interface allows XSS, which can be used to gain full control over the affected system via ICMP...

6.1CVSS7AI score0.00581EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2022/08/23 12:0 a.m.21 views

OpenWRT < 19.07.8 Multiple Vulnerabilities

OpenWRT is prone to multiple vulnerabilities. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.8CVSS6.3AI score0.0153EPSS
Exploits0References3
NVD
NVD
added 2021/08/02 9:15 p.m.27 views

CVE-2021-32019

There is missing input validation of host names displayed in OpenWrt before 19.07.8. The Connection Status page of the luci web-interface allows XSS, which can be used to gain full control over the affected system via ICMP...

6.1CVSS0.00581EPSS
Exploits0References1
CVE
CVE
added 2021/08/02 8:35 p.m.59 views

CVE-2021-32019

CVE-2021-32019 corresponds to a cross-site scripting (XSS) vulnerability in the OpenWrt LuCI web-interface, caused by missing input validation when processing host names on the Connection Status page. The issue allows an attacker to inject and execute HTML/script in the user’s browser, with the n...

6.1CVSS6.6AI score0.00581EPSS
Exploits0References1Affected Software1
OpenWrt
OpenWrt
added 2021/08/01 12:0 a.m.149 views

Security Advisory 2021-08-01-1 - XSS via missing input validation of host names displayed (CVE-2021-32019)

DESCRIPTION Missing input validation of host names displayed in OpenWrt LuCI web-interface leads to Cross-site scripting, which can be used to gain full control over the affected system. REQUIREMENTS Users need to visit the LuCI “Connection status” page of the router and activate the host name...

6.1CVSS6.7AI score0.00581EPSS
Exploits0
Rows per page
Query Builder