CVE-2022-45028

CVSS V2 None CVSS V3 None
Description
A cross-site scripting (XSS) vulnerability in Arris NVG443B 9.3.0h3d36 allows attackers to execute arbitrary web scripts or HTML via a crafted POST request sent to /cgi-bin/logs.ha.
Overview
  • CVE ID
  • CVE-2022-45028
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2022-12-13T18:15:10
  • Last Modified Date
  • 2022-12-15T20:01:20
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
AND
cpe:2.3:o:arris:nvg443b_firmware:9.3.0h3d36:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:arris:nvg443b:-:*:*:*:*:*:*:* 0 OR
History
Created Old Value New Value Data Type Notes
2022-12-13 18:17:57 Added to TrackCVE
2022-12-13 20:15:23 2022-12-13T18:15:10.557 2022-12-13T18:15:10 CVE Published Date updated
2022-12-13 20:15:23 2022-12-13T19:25:25 CVE Modified Date updated
2022-12-13 20:15:23 Received Awaiting Analysis Vulnerability Status updated
2022-12-14 18:15:32 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2022-12-15 20:15:01 2022-12-15T20:01:20 CVE Modified Date updated
2022-12-15 20:15:01 Undergoing Analysis Analyzed Vulnerability Status updated
2022-12-15 20:15:01 CWE-79 Weakness Enumeration new
2022-12-15 20:15:01 CPE Information updated