CVE-2020-27366

Name of the Vulnerable Software and Affected Versions Humax HGB10R-02 BRGCAB version 1.0.03

Description The issue is a Cross Site Scripting (XSS) vulnerability in the wlscanresults.html file, which allows local attackers to execute arbitrary code. This vulnerability can be exploited by local attackers.

Recommendations For Humax HGB10R-02 BRGCAB version 1.0.03, consider disabling access to the wlscanresults.html file as a temporary workaround until a patch is available. Restrict local access to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.