Cross-Site Scripting in Intelbras NPLUG Wireless Repeater
CVE-2018-17337

6.1MEDIUM

Key Information:

Vendor: Intelbras
Status: Nplug Firmware
Vendor: CVE Published:; 10 October 2018

What is CVE-2018-17337?

Intelbras NPLUG devices running version 1.0.0.14 are susceptible to a Cross-Site Scripting vulnerability. This issue arises when the device processes a crafted SSID transmitted over the network. An attacker could exploit this flaw to inject malicious scripts into the device, potentially compromising user data and network security. It is crucial for users of affected devices to take necessary precautions to mitigate the risks associated with this vulnerability.

References

http://seclists.org/fulldisclosure/2018/Oct/18

mailing-listx_refsource_FULLDISC

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 10, 2018
Vulnerability Reserved
Sep 22, 2018