CVE-2018-17533

Teltonika RUT9XX routers with firmware before 00.05.01.1 are prone to cross-site scripting vulnerabilities in hotspotlogin.cgi due to insufficient user input sanitization.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:teltonika:rut900_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:teltonika:rut900:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:teltonika:rut950_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:teltonika:rut950:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:teltonika:rut955_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:teltonika:rut955:-:*:*:*:*:*:*:*

Information

Published : 2018-10-15 12:29

Updated : 2018-11-30 06:09


NVD link : CVE-2018-17533

Mitre link : CVE-2018-17533


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Advertisement

dedicated server usa

Products Affected

teltonika

  • rut950_firmware
  • rut900_firmware
  • rut950
  • rut955_firmware
  • rut955
  • rut900