CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-5438

Cross-site scripting (XSS) vulnerability in ARRIS Touchstone TG862G/CT Telephony Gateway with firmware 7.6.59S.CT and earlier allows remote authenticated users to inject arbitrary web script or HTML via the computer_name parameter to connected_devices_computers_edit.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.5%

CVSS Severity

CVSS v2 Score 3.5

References

http://seclists.org/fulldisclosure/2014/Dec/58
http://seclists.org/fulldisclosure/2014/Dec/58

Products affected by CVE-2014-5438

Arris » Touchstone Tg862g/ct Firmware » Version: 7.6.59s.ct

cpe:2.3:a:arris:touchstone_tg862g/ct_firmware:7.6.59s.ct
Arris » Touchstone Tg862g/ct » Version: N/A

cpe:2.3:h:arris:touchstone_tg862g/ct:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-5438

Products

Pricing

Contact Us