Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2018-19630

cgi_handle_request in uhttpd in OpenWrt through 18.06.1 and LEDE through 17.01 has unauthenticated reflected XSS via the URI, as demonstrated by a cgi-bin/?[XSS] URI.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 54.9%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
Products affected by CVE-2018-19630
  • Openwrt » Lede » Version: 17.01
    cpe:2.3:o:openwrt:lede:17.01
  • Openwrt » Openwrt » Version: N/A
    cpe:2.3:o:openwrt:openwrt:-
  • Openwrt » Openwrt » Version: 15.05.1
    cpe:2.3:o:openwrt:openwrt:15.05.1
  • Openwrt » Openwrt » Version: 17.01.0
    cpe:2.3:o:openwrt:openwrt:17.01.0
  • Openwrt » Openwrt » Version: 17.01.1
    cpe:2.3:o:openwrt:openwrt:17.01.1
  • Openwrt » Openwrt » Version: 17.01.2
    cpe:2.3:o:openwrt:openwrt:17.01.2
  • Openwrt » Openwrt » Version: 17.01.3
    cpe:2.3:o:openwrt:openwrt:17.01.3
  • Openwrt » Openwrt » Version: 17.01.4
    cpe:2.3:o:openwrt:openwrt:17.01.4
  • Openwrt » Openwrt » Version: 17.01.5
    cpe:2.3:o:openwrt:openwrt:17.01.5
  • Openwrt » Openwrt » Version: 17.01.6
    cpe:2.3:o:openwrt:openwrt:17.01.6
  • Openwrt » Openwrt » Version: 17.01.7
    cpe:2.3:o:openwrt:openwrt:17.01.7
  • Openwrt » Openwrt » Version: 18.06.0
    cpe:2.3:o:openwrt:openwrt:18.06.0
  • Openwrt » Openwrt » Version: 18.06.1
    cpe:2.3:o:openwrt:openwrt:18.06.1


Products
Pricing
Contact Us

Shodan ® - All rights reserved