Technicolor Tc7300.B0 Firmware vulnerabilities
2 known vulnerabilities affecting technicolor/tc7300.b0_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2019-17524P4MEDIUMCVSS 5.4PoCvstfa.51.202019-11-13
CVE-2019-17524 [MEDIUM] CWE-79 CVE-2019-17524: An XSS vulnerability on Technicolor TC7300 STFA.51.20 devices allows remote attackers to inject arbi
An XSS vulnerability on Technicolor TC7300 STFA.51.20 devices allows remote attackers to inject arbitrary web script via the "Connected Clients" field to /wlanAccess.asp. An intranet host can use a crafted hostname to exploit this.
nvd
CVE-2019-17523P4MEDIUMCVSS 5.4vstfa.51.202019-11-13
CVE-2019-17523 [MEDIUM] CWE-79 CVE-2019-17523: An XSS vulnerability on Technicolor TC7300 STFA.51.20 devices allows remote attackers to inject arbi
An XSS vulnerability on Technicolor TC7300 STFA.51.20 devices allows remote attackers to inject arbitrary web script via the FileName parameter to /FTPDiag.asp.
nvd