Westermo: >> Dr-250 Firmware Security Vulnerabilities
The /uploadfile? functionality in Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers allows remote users to upload malicious file types and execute ASP code.
CVSS Score
8.8
EPSS Score
0.009
Published
2019-05-24
Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers allow CSRF.
CVSS Score
6.5
EPSS Score
0.001
Published
2019-05-24
XSS exists in the /cmdexec/cmdexe?cmd= function in Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers.
CVSS Score
6.1
EPSS Score
0.003
Published
2019-05-23