CVE-2020-25498

Name of the Vulnerable Software and Affected Versions: Beetel router 777VR1

Description: A Cross Site Scripting (XSS) issue can be exploited via the NTP server name in System Time and the Keyword in URL Filter.

Recommendations: For Beetel router 777VR1, as a temporary workaround, consider restricting access to the System Time and URL Filter features until a patch is available. Avoid using the Keyword parameter in the URL Filter until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.