Lucene search
China National Vulnerability DatabaseCNVD-2023-43023HistoryMay 06, 2023 - 12:00 a.m.
NETGEAR SRX5308 Cross-Site Scripting Vulnerability (CNVD-2023-43023)
2023-05-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
netgear srx5308
vpn firewall
cross-site scripting
vulnerability
sensitive information
user cookies
configport.logicalifname
EPSS
0.001
Percentile
40.8%
The NETGEAR SRX5308 is a VPN firewall appliance from NETGEAR. The NETGEAR SRX5308 suffers from a cross-site scripting vulnerability that originates from a misuse of the parameter ConfigPort.LogicalIfName. An attacker can exploit this vulnerability to obtain sensitive information such as user cookies.
Related
cvelist
cvelist
CVE-2023-2393 Netgear SRX5308 Web Management Interface cross site scripting
2023-04-28 21:00:05
prion
prion
Cross site scripting
2023-04-28 21:15:00
nvd
nvd
CVE-2023-2393
2023-04-28 21:15:08
cve
cve
CVE-2023-2393
2023-04-28 21:15:08