Vonage Vdv-23 Firmware vulnerabilities
2 known vulnerabilities affecting vonage/vdv-23_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2017-16902P3HIGHCVSS 7.5PoCv3.2.11-0.9.402017-11-20
CVE-2017-16902 [HIGH] CWE-119 CVE-2017-16902: On the Vonage VDV-23 115 3.2.11-0.9.40 home router, sending a long string of characters in the login
On the Vonage VDV-23 115 3.2.11-0.9.40 home router, sending a long string of characters in the loginPassword and/or loginUsername field to goform/login causes the router to reboot.
nvd
CVE-2017-16843P4MEDIUMCVSS 5.4PoCv3.2.11-0.9.402017-11-16
CVE-2017-16843 [MEDIUM] CWE-79 CVE-2017-16843: Vonage VDV-23 115 3.2.11-0.9.40 devices have stored XSS via the NewKeyword or NewDomain field to /go
Vonage VDV-23 115 3.2.11-0.9.40 devices have stored XSS via the NewKeyword or NewDomain field to /goform/RgParentalBasic.
nvd