CVE-2020-7249 - SMC D3G0804W 3.5.2.5-LAT_GA devices allow XSS via the SSID field on the WiFi Network Configuration p

CVE-2020-7249

Summary

SMC D3G0804W 3.5.2.5-LAT_GA devices allow XSS via the SSID field on the WiFi Network Configuration page (after a successful login to the admin account).

References

https://sku11army.blogspot.com/2020/01/smc-networks-stored-cross-site.html

Vulnerable Configurations

CVSS

Base:	5.0
Impact:
Exploitability:

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

21-01-2020 - 01:15

Published

21-01-2020 - 01:15

Last modified

21-01-2020 - 13:19