First published: Mon Jan 08 2018(Updated: )
SonicWall SonicOS on Network Security Appliance (NSA) 2017 Q4 devices has XSS via the CFS Custom Category and Cloud AV DB Exclusion Settings screens.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
SonicWall SonicOS | ||
Sonicwall Nsa 250m | ||
Sonicwall Nsa 2600 | ||
Sonicwall Nsa 2650 | ||
Sonicwall Nsa 3600 | ||
Sonicwall Nsa 4600 | ||
Sonicwall Nsa 5600 | ||
Sonicwall Nsa 6600 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-5281 is a vulnerability in SonicWall SonicOS on Network Security Appliance (NSA) 2017 Q4 devices that allows for cross-site scripting (XSS) attacks.
CVE-2018-5281 has a severity rating of medium with a CVSS score of 5.4.
CVE-2018-5281 affects SonicWall SonicOS on Network Security Appliance (NSA) 2017 Q4 devices.
CVE-2018-5281 allows attackers to perform cross-site scripting (XSS) attacks.
To fix CVE-2018-5281, it is recommended to apply the latest patches and updates from SonicWall.