A vulnerability was found in the CGI program in Zyxel GS1900-8 firmware version V2.60, that did not properly sterilize packet contents and could allow an authenticated, local user to perform a cross-site scripting (XSS) attack via a crafted LLDP packet.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zyxel gs1900-8_firmware |
||
zyxel gs1900-8hp_firmware |
||
zyxel gs1900-10hp_firmware |
||
zyxel gs1900-16_firmware |
||
zyxel gs1900-24e_firmware |
||
zyxel gs1900-24ep_firmware |
||
zyxel gs1900-24_firmware |
||
zyxel gs1900-24hp_firmware |
||
zyxel gs1900-24hpv2_firmware |
||
zyxel gs1900-48_firmware |
||
zyxel gs1900-48hp_firmware |
||
zyxel gs1900-48hpv2_firmware |