Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Dasanzhone Subscribe
Filtered by product Znid Gpon 2426a Eu
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-10677 1 Dasanzhone 2 Znid Gpon 2426a Eu, Znid Gpon 2426a Eu Firmware 2019-09-09 4.3 MEDIUM 6.1 MEDIUM
Multiple Cross-Site Scripting (XSS) issues in the web interface on DASAN Zhone ZNID GPON 2426A EU version S3.1.285 devices allow a remote attacker to execute arbitrary JavaScript via manipulation of an unsanitized GET parameter: /zhndnsdisplay.cmd (name), /wlsecrefresh.wl (wlWscCfgMethod, wl_wsc_reg).