CVEDB API

An issue was discovered on Xirrus XR520, XR620, XR2436, and XH2-120 devices. The cgi-bin/ViewPage.cgi user parameter allows XSS.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 55.1%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 4.3

References

Products affected by CVE-2020-9022

Cambiumnetworks » Xh2-120 » Version: N/A

cpe:2.3:h:cambiumnetworks:xh2-120:-
Cambiumnetworks » Xr2436 » Version: N/A

cpe:2.3:h:cambiumnetworks:xr2436:-
Cambiumnetworks » Xr520 » Version: N/A

cpe:2.3:h:cambiumnetworks:xr520:-
Cambiumnetworks » Xr620 » Version: N/A

cpe:2.3:h:cambiumnetworks:xr620:-
Cambiumnetworks » Xh2-120 Firmware » Version: N/A

cpe:2.3:o:cambiumnetworks:xh2-120_firmware:-
Cambiumnetworks » Xr2436 Firmware » Version: N/A

cpe:2.3:o:cambiumnetworks:xr2436_firmware:-
Cambiumnetworks » Xr520 Firmware » Version: N/A

cpe:2.3:o:cambiumnetworks:xr520_firmware:-
Cambiumnetworks » Xr620 Firmware » Version: N/A

cpe:2.3:o:cambiumnetworks:xr620_firmware:-