Vulnerability Details CVE-2018-0614
Cross-site scripting vulnerability in NEC Platforms Calsos CSDX and CSDJ series products (CSDX 1.37210411 and earlier, CSDX(P) 4.37210411 and earlier, CSDX(D) 3.37210411 and earlier, CSDX(S) 2.37210411 and earlier, CSDJ-B 01.03.00 and earlier, CSDJ-H 01.03.00 and earlier, CSDJ-D 01.03.00 and earlier, CSDJ-A 03.00.00) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.3%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
Products affected by CVE-2018-0614
-
cpe:2.3:h:necplatforms:calsos_csdj-a:-
-
cpe:2.3:h:necplatforms:calsos_csdj-b:-
-
cpe:2.3:h:necplatforms:calsos_csdj-d:-
-
cpe:2.3:h:necplatforms:calsos_csdj-h:-
-
cpe:2.3:h:necplatforms:calsos_csdx(d):-
-
cpe:2.3:h:necplatforms:calsos_csdx(p):-
-
cpe:2.3:h:necplatforms:calsos_csdx(s):-
-
cpe:2.3:h:necplatforms:calsos_csdx:-
-
cpe:2.3:o:necplatforms:calsos_csdj-a_firmware:03.00.00
-
cpe:2.3:o:necplatforms:calsos_csdj-b_firmware:01.03.00
-
cpe:2.3:o:necplatforms:calsos_csdj-d_firmware:01.03.00
-
cpe:2.3:o:necplatforms:calsos_csdj-h_firmware:01.03.00
-
cpe:2.3:o:necplatforms:calsos_csdx(d)_firmware:3.37210411
-
cpe:2.3:o:necplatforms:calsos_csdx(p)_firmware:4.37210411
-
cpe:2.3:o:necplatforms:calsos_csdx(s)_firmware:2.37210411
-
cpe:2.3:o:necplatforms:calsos_csdx_firmware:1.37210411