Vulnerability CVE-2023-27572


Published: 2023-04-15

Description:
An issue was discovered in CommScope Arris DG3450 Cable Gateway AR01.02.056.18_041520_711.NCS.10. A reflected XSS vulnerability was discovered in the https_redirect.php web page via the page parameter.

See advisories in our WLB2 database:
Topic
Author
Date
Med.
Arris DG3450 AR01.02.056.18_041520_711.NCS.10 XSS / Missing Authentication
Steffen Robertz
08.03.2023

Type:

CWE-79

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

 References:
https://www.sec-consult.com/en/blog/
https://sec-consult.com/vulnerability-lab/advisory/multiple-vulnerabilities-in-arris-dg3450-cable-gateway/
https://sec-consult.com/en/vulnerability-lab/advisories/index.html

Copyright 2024, cxsecurity.com

 

Back to Top