CVE-2014-9142

Name of the Vulnerable Software and Affected Versions Technicolor Router TD5130 version 2.05.C29GV

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the failrefer parameter. This could potentially lead to unauthorized actions on the affected system.

Recommendations For Technicolor Router TD5130 version 2.05.C29GV, avoid using the failrefer parameter in affected API endpoints until the issue is resolved. As a temporary workaround, consider restricting access to the vulnerable module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.