CVE-2018-8738
published 2018-07-05CVE-2018-8738: Airties 5444 1.0.0.18 and 5444TT 1.0.0.18 devices allow XSS.
PriorityP338medium6.1CVSS 3.0
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
2.27%
80.9th percentile
Airties 5444 1.0.0.18 and 5444TT 1.0.0.18 devices allow XSS.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| airties | 5444_firmware | — | — |
| airties | 5444tt_firmware | — | — |
CVSS provenance
nvdv3.06.1MEDIUMCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
ET WEB_SPECIFIC_APPS Airties AIR5444TT - Cross-Site Scripting
suricata·2018-07-06
CVE-2018-8738 ET WEB_SPECIFIC_APPS Airties AIR5444TT - Cross-Site Scripting
ET WEB_SPECIFIC_APPS Airties AIR5444TT - Cross-Site Scripting
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Airties AIR5444TT - Cross-Site Scripting"; flow:established,to_server; http.uri; content:"/top.html?page=main&productboardtype="; fast_pattern; pcre:"/^[^&]+(?:s(?:cript|tyle\x3D)|on(?:mouse[a-z]|key[a-z]|load|unload|dragdrop|blur|focus|click|dblclick|submit|reset|select|change))/Ri"; reference:url,exploit-db.com/exploits/44986/; reference:cve,2018-8738; classtype:attempted-user; sid:2025789; rev:3; metadata:attack_target Web_Server, created_at 2018_07_06, cve CVE_2018_8738, deployment Datacenter, performance_impact Low, confidence Medium, signature_severity Major, updated_at 2020_08_25;)
No writeups or analysis indexed.
2018-07-05
Published