Lucene search
K

8 matches found

OSV
OSV
added 2024/01/17 8:15 a.m.5 views

CVE-2023-51733

This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient validation of user supplied input for the Identity parameter under Local endpoint settings at its web interface. A remote attacker could exploit this vulnerability by supplying specially crafted input to the...

5.4CVSS5.9AI score0.00358EPSS
Exploits0References1
OSV
OSV
added 2024/01/17 8:15 a.m.4 views

CVE-2023-51734

This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient validation of user supplied input for the Identity parameter under Remote endpoint settings at its web interface. A remote attacker could exploit this vulnerability by supplying specially crafted input to th...

5.4CVSS5.9AI score
Exploits0References1
Prion
Prion
added 2024/01/17 8:15 a.m.15 views

Input validation

This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient validation of user supplied input for the Identity parameter under Remote endpoint settings at its web interface. A remote attacker could exploit this vulnerability by supplying specially crafted input to th...

4.9CVSS6.2AI score0.00358EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/01/17 7:13 a.m.15 views

CVE-2023-51734 Stored Cross Site Scripting Vulnerability in Skyworth Router

This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient validation of user supplied input for the Identity parameter under Remote endpoint settings at its web interface. A remote attacker could exploit this vulnerability by supplying specially crafted input to th...

6.9CVSS6.6AI score0.00358EPSS
Exploits0References1
CVE
CVE
added 2024/01/17 7:13 a.m.34 views

CVE-2023-51734

CVE-2023-51734 affects Skyworth Router CM5100, version 4.1.1.24. The issue originates from insufficient validation of the Identity parameter in the web interface’s Remote endpoint settings, enabling a remote attacker to supply crafted input that can trigger a stored XSS vulnerability. The availab...

6.9CVSS5.3AI score0.00358EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/17 7:13 a.m.15 views

CVE-2023-51734 Stored Cross Site Scripting Vulnerability in Skyworth Router

This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient validation of user supplied input for the Identity parameter under Remote endpoint settings at its web interface. A remote attacker could exploit this vulnerability by supplying specially crafted input to th...

6.9CVSS6.2AI score0.00358EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/01/17 7:11 a.m.33 views

CVE-2023-51733 Stored Cross Site Scripting Vulnerability in Skyworth Router

This vulnerability exist in Skyworth Router CM5100, version 4.1.1.24, due to insufficient validation of user supplied input for the Identity parameter under Local endpoint settings at its web interface. A remote attacker could exploit this vulnerability by supplying specially crafted input to the...

6.9CVSS6.5AI score0.00358EPSS
Exploits0References1
OSV
OSV
added 2023/07/12 7:15 a.m.2 views

CVE-2023-37197

A CWE-89: Improper Neutralization of Special Elements vulnerability used in an SQL Command 'SQL Injection' vulnerability exists that could allow a user already authenticated on DCE to access unauthorized content, change, or delete content, or perform unauthorized actions when tampering with the...

8.8CVSS5.8AI score0.00496EPSS
Exploits0References1
Rows per page
Query Builder