What is CVE-2018-19614?

CVE-2018-19614 is a vulnerability that allows for XSS (Cross-Site Scripting) attacks in the /cmdexec/cmdexe?cmd= function in Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers.

How does CVE-2018-19614 impact Westermo DR-250 and DR-260 routers?

CVE-2018-19614 allows an attacker to execute malicious scripts on the affected routers via the /cmdexec/cmdexe?cmd= function, potentially leading to unauthorized access, data theft, or further exploitation.

What is the severity of CVE-2018-19614?

CVE-2018-19614 has a severity rating of 6.1 (medium).

How can I mitigate the CVE-2018-19614 vulnerability?

To mitigate the CVE-2018-19614 vulnerability, it is recommended to update the firmware of the affected Westermo DR-250 and DR-260 routers to a version that includes a fix for the XSS vulnerability.

Where can I find more information about CVE-2018-19614?

More information about CVE-2018-19614 can be found at the following references: [GitHub](https://github.com/TheWickerMan/CVE-Disclosures/blob/master/CVE-2018-19614.md) and [Westermo](https://www.westermo.us/).

Vulnerability/
CVE-2018-19614

medium

6.1

CWE

23/5/2019

5/8/2024

CVE-2018-19614: XSS

First published: Thu May 23 2019(Updated: )

XSS exists in the /cmdexec/cmdexe?cmd= function in Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Westermo Dr-250 Firmware
Westermo DR-250
Westermo Dr-260 Firmware
Westermo Dr-260
Westermo Mr-260 Firmware
Westermo Mr-260

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2018-19614?
CVE-2018-19614 is a vulnerability that allows for XSS (Cross-Site Scripting) attacks in the /cmdexec/cmdexe?cmd= function in Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers.
How does CVE-2018-19614 impact Westermo DR-250 and DR-260 routers?
CVE-2018-19614 allows an attacker to execute malicious scripts on the affected routers via the /cmdexec/cmdexe?cmd= function, potentially leading to unauthorized access, data theft, or further exploitation.
What is the severity of CVE-2018-19614?
CVE-2018-19614 has a severity rating of 6.1 (medium).
How can I mitigate the CVE-2018-19614 vulnerability?
To mitigate the CVE-2018-19614 vulnerability, it is recommended to update the firmware of the affected Westermo DR-250 and DR-260 routers to a version that includes a fix for the XSS vulnerability.
Where can I find more information about CVE-2018-19614?
More information about CVE-2018-19614 can be found at the following references: [GitHub](https://github.com/TheWickerMan/CVE-Disclosures/blob/master/CVE-2018-19614.md) and [Westermo](https://www.westermo.us/).

collector/nvd-index
agent/weakness
agent/tags
agent/type
agent/event
agent/severity
agent/references
agent/author
agent/description
agent/last-modified-date
agent/first-publish-date
agent/softwarecombine
collector/mitre-cve
source/MITRE
vendor/westermo
canonical/westermo dr-250 firmware
canonical/westermo dr-250
canonical/westermo dr-260 firmware
canonical/westermo dr-260
canonical/westermo mr-260 firmware
canonical/westermo mr-260

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.