CVE-2020-9419

CVSS V2 None CVSS V3 None
Description
Multiple stored cross-site scripting (XSS) vulnerabilities in Arcadyan Wifi routers VRV9506JAC23 allow remote attackers to inject arbitrary web script or HTML via the hostName and domain_name parameters present in the LAN configuration section of the administrative dashboard.
Overview
  • CVE ID
  • CVE-2020-9419
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2022-12-14T01:15:10
  • Last Modified Date
  • 2022-12-16T17:40:34
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
AND
cpe:2.3:o:arcadyan:vrv9506jac23_firmware:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:arcadyan:vrv9506jac23:-:*:*:*:*:*:*:* 0 OR
History
Created Old Value New Value Data Type Notes
2022-12-14 02:14:38 Added to TrackCVE
2022-12-14 14:15:23 2022-12-14T01:15:10.210 2022-12-14T01:15:10 CVE Published Date updated
2022-12-14 14:15:23 2022-12-14T14:09:52 CVE Modified Date updated
2022-12-14 14:15:23 Received Awaiting Analysis Vulnerability Status updated
2022-12-14 18:15:34 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2022-12-18 04:35:27 2022-12-16T17:40:34 CVE Modified Date updated
2022-12-18 04:35:27 Undergoing Analysis Analyzed Vulnerability Status updated
2022-12-18 04:35:30 CWE-79 Weakness Enumeration new
2022-12-18 04:35:37 CPE Information updated