Reflected XSS Vulnerability in WatchGuard Fireware by WatchGuard
CVE-2016-6154
6.1MEDIUM
Summary
The authentication applet in the WatchGuard Fireware 11.11 Operating System is susceptible to reflected cross-site scripting (XSS) attacks. This vulnerability may allow attackers to manipulate users by injecting malicious scripts into web pages, which can result in unauthorized actions or access to sensitive data. Additionally, this flaw could facilitate open redirect attacks, leading users to fraudulent websites without their knowledge.
References
CVSS V3.1
Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved