Tasmota Project: >> Tasmota Security Vulnerabilities
Cross Site Scripting (XSS) in Tasmota firmware 6.5.0 allows remote attackers to inject JavaScript code via a crafted string in the field "Friendly Name 1".
CVSS Score
6.1
EPSS Score
0.001
Published
2023-01-09
Tasmota before commit 066878da4d4762a9b6cb169fdf353e804d735cfd was discovered to contain a stack overflow via the ClientPortPtr parameter at lib/libesp32/rtsp/CRtspSession.cpp.
CVSS Score
9.8
EPSS Score
0.002
Published
2022-11-14