Input validation

2021-11-2416:15:00

PRIOn knowledge base

www.prio-n.com

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

48.9%

JSON

Improper neutralization of HTTP request headers for scripting syntax vulnerability in the Web GUI of RTX830 Rev.15.02.17 and earlier, NVR510 Rev.15.01.18 and earlier, NVR700W Rev.15.00.19 and earlier, and RTX1210 Rev.14.01.38 and earlier allows a remote authenticated attacker to obtain sensitive information via a specially crafted web page.

CPENameOperatorVersion
biz_box_nvr510_firmwarelt15.01.18
biz_box_nvr700w_firmwarele15.00.19
biz_box_rtx1210_firmwarele14.01.38
biz_box_rtx830_firmwarele15.02.17
nvr510_firmwarele15.01.18
nvr700w_firmwarele15.00.19
rtx1210_firmwarele14.01.38
rtx830_firmwarele15.02.17

Name	Operator	Version
biz_box_nvr510_firmware	lt	15.01.18
biz_box_nvr700w_firmware	le	15.00.19
biz_box_rtx1210_firmware	le	14.01.38
biz_box_rtx830_firmware	le	15.02.17
nvr510_firmware	le	15.01.18
nvr700w_firmware	le	15.00.19
rtx1210_firmware	le	14.01.38
rtx830_firmware	le	15.02.17