Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M_1.34ME allows a local attacker to obtain sensitive information via the file upload feature of the VPN configuration module.
Metrics
Affected Vendors & Products
References
History
Fri, 22 Nov 2024 15:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Dlink
Dlink dwr-2000m Dlink dwr-2000m Firmware |
|
CPEs | cpe:2.3:h:dlink:dwr-2000m:-:*:*:*:*:*:*:* cpe:2.3:o:dlink:dwr-2000m_firmware:1.34me:*:*:*:*:*:*:* |
|
Vendors & Products |
Dlink
Dlink dwr-2000m Dlink dwr-2000m Firmware |
Thu, 21 Nov 2024 18:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
D-link
D-link dwr-2000m Firmware |
|
Weaknesses | CWE-79 | |
CPEs | cpe:2.3:o:d-link:dwr-2000m_firmware:1.34me:*:*:*:*:*:*:* | |
Vendors & Products |
D-link
D-link dwr-2000m Firmware |
|
Metrics |
cvssV3_1
|
Tue, 12 Nov 2024 22:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M_1.34ME allows a local attacker to obtain sensitive information via the file upload feature of the VPN configuration module. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-11-12T00:00:00
Updated: 2024-11-21T17:22:35.314Z
Reserved: 2024-03-08T00:00:00
Link: CVE-2024-28730
Vulnrichment
Updated: 2024-11-21T17:12:51.053Z
NVD
Status : Analyzed
Published: 2024-11-12T23:15:04.410
Modified: 2024-11-22T15:07:10.643
Link: CVE-2024-28730
Redhat
No data.