Vulnerability Details CVE-2021-41946
In FiberHome VDSL2 Modem HG150-Ub_V3.0, a stored cross-site scripting (XSS) vulnerability in Parental Control --> Access Time Restriction --> Username field, a user cannot delete the rule due to the XSS.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.7%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
References
Products affected by CVE-2021-41946
-
cpe:2.3:h:fiberhome:hg150-ub:-
-
cpe:2.3:o:fiberhome:hg150-ub_firmware:3.0