Vulnerability Details CVE-2021-28160
Wireless-N WiFi Repeater REV 1.0 (28.08.06.1) suffers from a reflected XSS vulnerability due to unsanitized SSID value when the latter is displayed in the /repeater.html page ("Repeater Wizard" homepage section).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 47.2%
CVSS Severity
CVSS v3 Score 6.1
CVSS v2 Score 4.3
References
- https://blog-ssh3ll.medium.com/acexy-wireless-n-wifi-repeater-vulnerabilities-8bd5d14a2990
- https://www.amazon.com/Extender-Wireless-Repeater-External-Antennas/dp/B08GMCC6X2/
- https://blog-ssh3ll.medium.com/acexy-wireless-n-wifi-repeater-vulnerabilities-8bd5d14a2990
- https://www.amazon.com/Extender-Wireless-Repeater-External-Antennas/dp/B08GMCC6X2/
Products affected by CVE-2021-28160
-
cpe:2.3:h:acexy_wireless-n_wifi_repeater_project:acexy_wireless-n_wifi_repeater:1.0
-
Acexy Wireless-N Wifi Repeater Project » Acexy Wireless-N Wifi Repeater Firmware » Version: 28.08.06.1cpe:2.3:o:acexy_wireless-n_wifi_repeater_project:acexy_wireless-n_wifi_repeater_firmware:28.08.06.1