CVE-2018-21095

Severity

4.3MEDIUM

EPSS

0.1%

top 79.10%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedApr 27

Latest updateMay 24

Description

Certain NETGEAR devices are affected by stored XSS. This affects SRR60 before 2.2.1.210 and SRS60 before 2.2.1.210.

CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:NExploitability: 1.2 | Impact: 2.7

GHSA

GHSA-f38g-f5p2-2hqg: Certain NETGEAR devices are affected by stored XSS↗2022-05-24

▶

CVEList

CVE-2018-21095: Certain NETGEAR devices are affected by stored XSS↗2020-04-27

▶

Bugzilla

CVE-2018-10923 glusterfs: I/O to arbitrary devices on storage server↗2018-09-05

▶