An issue exists on Vera VeraEdge 1.7.19 and Veralite 1.7.481 devices. The device provides a shell script called connect.sh which is supposed to return a specific cookie for the user when the user is authenticated to home.getvera.com. One of the parameters retrieved by this script is "RedirectURL". However, the application lacks strict input validation of this parameter and this allows an malicious user to execute the client-side code on this application.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
getvera veraedge_firmware |
||
getvera veralite_firmware |