Vulnerability Details CVE-2021-22410
There is a XSS injection vulnerability in iMaster NCE-Fabric V100R019C10. A module of the client does not verify the input sufficiently. Attackers can exploit this vulnerability by modifying input after logging onto the client. This may compromise the normal service of the client.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 46.5%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
References
Products affected by CVE-2021-22410
-
cpe:2.3:h:huawei:imaster_nce-fabric:-
-
cpe:2.3:o:huawei:imaster_nce-fabric_firmware:v100r019c10