PT-2018-14045 · Teltonika · Teltonika Rut9Xx

David Gnedt

·

Publicado

2018-10-15

·

Atualizado

2018-11-30

·

CVE-2018-17533

CVSS v3.1

6.1

Média

VetorAV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Name of the Vulnerable Software and Affected Versions Teltonika RUT9XX routers with firmware prior to 00.05.01.1
Description The issue is related to cross-site scripting due to insufficient user input sanitization in the hotspotlogin.cgi file.
Recommendations For firmware versions prior to 00.05.01.1, update the firmware to version 00.05.01.1 or later to resolve the issue.

Exploit

Correção

XSS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-79

Identificadores relacionados

CVE-2018-17533

Produtos afetados

Teltonika Rut9Xx