First published: Tue Dec 13 2022(Updated: )
A cross-site scripting (XSS) vulnerability in Arris NVG443B 9.3.0h3d36 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request sent to /cgi-bin/logs.ha.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Arris Nvg443b Firmware | =9.3.0h3d36 | |
Arris NVG443B |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2022-45028.
The severity level of CVE-2022-45028 is medium.
The vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted POST request sent to /cgi-bin/logs.ha.
The Arris NVG443B firmware version 9.3.0h3d36 is affected by CVE-2022-45028.
There may be a fix available for CVE-2022-45028, please refer to the provided references for more information.