Vulnerability Details CVE-2020-5785
Insufficient output sanitization in Teltonika firmware TRB2_R_00.02.04.3 allows an unauthenticated attacker to conduct reflected cross-site scripting via a crafted ‘action’ or ‘pkg_name’ parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 76.6%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
Products affected by CVE-2020-5785
-
cpe:2.3:h:teltonika-networks:trb245:-
-
cpe:2.3:o:teltonika-networks:trb245_firmware:00.02.04.03