CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-22971

Cross Site Scripting (XSS) vulnerability in Hughes Network Systems Router Terminal for HX200 v8.3.1.14, HX90 v6.11.0.5, HX50L v6.10.0.18, HN9460 v8.2.0.48, and HN7000S v6.9.0.37, allows unauthenticated attackers to misuse frames, include JS/HTML code and steal sensitive information from legitimate users of the application.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.013

EPSS Ranking 78.7%

CVSS Severity

CVSS v3 Score 6.1

References

Products affected by CVE-2023-22971

Hughes » Hn7000s » Version: N/A

cpe:2.3:h:hughes:hn7000s:-
Hughes » Hn9460 » Version: N/A

cpe:2.3:h:hughes:hn9460:-
Hughes » Hx200 » Version: N/A

cpe:2.3:h:hughes:hx200:-
Hughes » Hx50l » Version: N/A

cpe:2.3:h:hughes:hx50l:-
Hughes » Hx90 » Version: N/A

cpe:2.3:h:hughes:hx90:-
Hughes » Hn7000s Firmware » Version: 6.9.0.37

cpe:2.3:o:hughes:hn7000s_firmware:6.9.0.37
Hughes » Hn9460 Firmware » Version: 8.2.0.48

cpe:2.3:o:hughes:hn9460_firmware:8.2.0.48
Hughes » Hx200 Firmware » Version: 8.3.1.14

cpe:2.3:o:hughes:hx200_firmware:8.3.1.14
Hughes » Hx50l Firmware » Version: 6.10.0.18

cpe:2.3:o:hughes:hx50l_firmware:6.10.0.18
Hughes » Hx90 Firmware » Version: 6.11.0.5

cpe:2.3:o:hughes:hx90_firmware:6.11.0.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-22971

Products

Pricing

Contact Us