CVE-2016-10864Cross-site Scripting in Netgear Ex7000 Firmware

CWE-79Cross-site Scripting3 documents3 sources
Severity
5.2MEDIUMNVD
EPSS
0.1%
top 65.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Netgear Ex7000 Firmware
Timeline
PublishedAug 8
Latest updateMay 24

Description

NETGEAR EX7000 V1.0.0.42_1.0.94 devices allow XSS via the SSID.

CVSS vector

CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.1 | Impact: 2.7

Affected Packages1 packages

NVDnetgear/ex7000_firmware1.0.0.42_1.0.94

🔴Vulnerability Details

2
GHSA
GHSA-879h-ch4v-x2wj: NETGEAR EX7000 V12022-05-24
CVEList
CVE-2016-10864: NETGEAR EX7000 V12019-08-08
CVE-2016-10864 — Cross-site Scripting in Netgear | cvebase