CVE-2021-35228
published 2021-10-21CVE-2021-35228: This vulnerability occurred due to missing input sanitization for one of the output fields that is extracted from headers on specific section of page causing a…
PriorityP420medium4.7CVSS 3.1
AVNACHPRNUIRSCCLILAN
EPSS
0.56%
42.2th percentile
This vulnerability occurred due to missing input sanitization for one of the output fields that is extracted from headers on specific section of page causing a reflective cross site scripting attack. An attacker would need to perform a Man in the Middle attack in order to change header for a remote victim.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| solarwinds | database_performance_analyzer | — | — |
| solarwinds | solarwinds | >= DPA 2021.3.7388 < 2021.3.7388 | 2021.3.7388 |
CVSS provenance
nvdv3.14.7MEDIUMCVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N
nvdv2.02.6LOWAV:N/AC:H/Au:N/C:N/I:P/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
ET EXPLOIT Netgear ProSAFE Plus Stored XSS Inbound (CVE-2020-35228)
suricata·2021-03-11·CVSS 4.8
CVE-2020-35228 [MEDIUM] ET EXPLOIT Netgear ProSAFE Plus Stored XSS Inbound (CVE-2020-35228)
ET EXPLOIT Netgear ProSAFE Plus Stored XSS Inbound (CVE-2020-35228)
Rule: alert http any any -> $HOME_NET any (msg:"ET EXPLOIT Netgear ProSAFE Plus Stored XSS Inbound (CVE-2020-35228)"; flow:established,to_server; http.method; content:"POST"; http.request_body; content:"submitId=multiLanguageCfg&selectLang="; fast_pattern; content:"|27 3a|"; within:50; reference:url,research.nccgroup.com/2021/03/08/technical-advisory-multiple-vulnerabilities-in-netgear-prosafe-plus-jgs516pe-gs116ev2-switches/; reference:cve,2020-35228; classtype:attempted-admin; sid:2031939; rev:2; metadata:attack_target Networking_Equipment, created_at 2021_03_11, cve CVE_2020_35228, deployment Perimeter, deployment Internal, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, upda
No public exploits indexed.
No writeups or analysis indexed.
https://documentation.solarwinds.com/en/success_center/dpa/content/release_notes/dpa_2021-3-7438_release_notes.htmhttps://www.solarwinds.com/trust-center/security-advisories/CVE-2021-35228https://documentation.solarwinds.com/en/success_center/dpa/content/release_notes/dpa_2021-3-7438_release_notes.htmhttps://www.solarwinds.com/trust-center/security-advisories/CVE-2021-35228
2021-10-21
Published