CVE-2021-32302

MEDIUM

6.1

Descricao

Cross Site Scripting vulnerability in IRZ Electronics RUH2 GSM router allows attacker to obtain sensitive information via the Upload File parameter.

Pontuacao CVSS v3.16.1

SeveridadeMEDIUM

Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Vetor de ataqueNETWORK

ComplexidadeLOW

Privilegios necessariosNONE

Interacao do usuarioREQUIRED

Publicado2/27/2023

Ultima modificacao11/21/2024

Fontenvd

Avistamentos honeypot0

irz:ruh2irz:ruh2_firmware

CWE-79

http://irz.com(cve@mitre.org)

http://irz.com(af854a3a-2127-422b-91ae-364da2661108)

http://ruh2.com(af854a3a-2127-422b-91ae-364da2661108)

Sem correlacoes registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.