Sagemcom F@ST3686 v1.0 HUN 3.97.0 has XSS via RgDiagnostics.asp, RgDdns.asp, RgFirewallEL.asp, RgVpnL2tpPptp.asp.
References
Link | Resource |
---|---|
https://github.com/Gr3gPr1est/BugReport/blob/master/SAGEM_F%40ST3686_v1.0_HUN_3.97.0_XSS_Vuln..pdf | Exploit Third Party Advisory |
http://sagemcomfst3686v10hun3970.com | Broken Link |
https://github.com/Gr3gPr1est/BugReport/blob/master/CVE-2020-21733 | Exploit Third Party Advisory |
http://sagemcom.com | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2020-09-14 05:15
Updated : 2020-09-17 12:47
NVD link : CVE-2020-21733
Mitre link : CVE-2020-21733
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
sagemcom
- f\@st_3686_firmware
- f\@st_3686