PT-2017-13045 · Axesstel · Axesstel Mu553S

Published

2017-09-13

Updated

2017-09-21

CVE-2017-13724

CVSS v3.1

5.4

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Axesstel MU553S version MU55XS-V1.14

Description The issue concerns a Stored Cross Site Scripting vulnerability. It is located in the APN parameter under the "Basic Settings" page.

Recommendations For version MU55XS-V1.14, avoid using the APN parameter in the "Basic Settings" page until the issue is resolved. As a temporary workaround, consider restricting access to the "Basic Settings" page to minimize the risk of exploitation.

Exploit

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2017-13724

Affected Products

Axesstel Mu553S

PT-2017-13045 · Axesstel · Axesstel Mu553S

CVE-2017-13724

Weakness Enumeration

Related Identifiers

Affected Products

References · 3