XSS Vulnerability in Edimax EW-7438RPn Mini v2
CVE-2018-10569

6.1MEDIUM

Key Information:

Vendor: Edimax
Status: Edimax Ew-7438rpn V2 Firmware
Vendor: CVE Published:; 13 August 2018

What is CVE-2018-10569?

A cross-site scripting (XSS) vulnerability was discovered in the Edimax EW-7438RPn Mini v2, present in versions prior to 1.26. This issue arises in the SSID field, allowing an attacker to inject malicious scripts, which could compromise user data and lead to unauthorized access. Ensuring that firmware is updated is crucial for mitigating such vulnerabilities and protecting your network.

References

https://youtu.be/m2to4PWmHkI

x_refsource_MISC

https://youtu.be/6d4BPbvddkE

x_refsource_MISC

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 13, 2018
Vulnerability Reserved
Apr 30, 2018

CVE-2018-10569 Data

JSON