CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-9419

Multiple stored cross-site scripting (XSS) vulnerabilities in Arcadyan Wifi routers VRV9506JAC23 allow remote attackers to inject arbitrary web script or HTML via the hostName and domain_name parameters present in the LAN configuration section of the administrative dashboard.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 15.6%

CVSS Severity

CVSS v3 Score 5.4

References

https://gist.github.com/AsherDLL/03d0762b5a535e300f1121caebe333ce
https://gist.github.com/AsherDLL/03d0762b5a535e300f1121caebe333ce

Products affected by CVE-2020-9419

Arcadyan » Vrv9506jac23 » Version: N/A

cpe:2.3:h:arcadyan:vrv9506jac23:-
Arcadyan » Vrv9506jac23 Firmware » Version: N/A

cpe:2.3:o:arcadyan:vrv9506jac23_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-9419

Products

Pricing

Contact Us