← Back to CVEs
CVE-2018-0614
N/ADescription
Cross-site scripting vulnerability in NEC Platforms Calsos CSDX and CSDJ series products (CSDX 1.37210411 and earlier, CSDX(P) 4.37210411 and earlier, CSDX(D) 3.37210411 and earlier, CSDX(S) 2.37210411 and earlier, CSDJ-B 01.03.00 and earlier, CSDJ-H 01.03.00 and earlier, CSDJ-D 01.03.00 and earlier, CSDJ-A 03.00.00) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE Details
CVSS v3.1 ScoreN/A
Published7/26/2018
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
necplatforms:calsos_csdj-anecplatforms:calsos_csdj-a_firmwarenecplatforms:calsos_csdj-bnecplatforms:calsos_csdj-b_firmwarenecplatforms:calsos_csdj-dnecplatforms:calsos_csdj-d_firmwarenecplatforms:calsos_csdj-hnecplatforms:calsos_csdj-h_firmwarenecplatforms:calsos_csdxnecplatforms:calsos_csdx\(d\)necplatforms:calsos_csdx\(d\)_firmwarenecplatforms:calsos_csdx\(p\)necplatforms:calsos_csdx\(p\)_firmwarenecplatforms:calsos_csdx\(s\)necplatforms:calsos_csdx\(s\)_firmwarenecplatforms:calsos_csdx_firmware
Weaknesses (CWE)
CWE-79
References
http://jvn.jp/en/jp/JVN63895206/index.html(vultures@jpcert.or.jp)
https://www.necplatforms.co.jp/product/enkaku/info180702.html(vultures@jpcert.or.jp)
http://jvn.jp/en/jp/JVN63895206/index.html(af854a3a-2127-422b-91ae-364da2661108)
https://www.necplatforms.co.jp/product/enkaku/info180702.html(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.