First published: Fri Jun 26 2020(Updated: )
Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 allows live/CPEManager/AXCampaignManager/handle_campaign_script_link?script_name= XSS.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Zyxel CloudCNM SecuManager | =3.1.0 | |
Zyxel CloudCNM SecuManager | =3.1.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-15339 is a vulnerability in Zyxel CloudCNM SecuManager 3.1.0 and 3.1.1 that allows XSS via the handle_campaign_script_link API.
The severity of CVE-2020-15339 is medium with a CVSS score of 6.1.
Zyxel CloudCNM SecuManager version 3.1.0 and 3.1.1 are affected by CVE-2020-15339.
The XSS vulnerability in CVE-2020-15339 can be exploited through the handle_campaign_script_link API.
Yes, you can find references for CVE-2020-15339 here: [1] and here: [2].