The server management software module of ZTE has a storage XSS vulnerability. The attacker inserts some attack codes through the foreground login page, which will cause the user to execute the predefined malicious script in the browser. This affects <R5300G4V03.08.0100/V03.07.0300/V03.07.0200/V03.07.0108/V03.07.0100/V03.05.0047/V03.05.0046/V03.05.0045/V03.05.0044/V03.05.0043/V03.05.0040/V03.04.0020;R8500G4V03.07.0103/V03.07.0101/V03.06.0100/V03.05.0400/V03.05.0020;R5500G4V03.08.0100/V03.07.0200/V03.07.0100/V03.06.0100>.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: zte
Published: 2020-07-20T17:02:52
Updated: 2024-08-04T09:11:05.205Z
Reserved: 2020-01-13T00:00:00
Link: CVE-2020-6872
Vulnrichment
No data.
NVD
Status : Modified
Published: 2020-07-20T18:15:12.623
Modified: 2024-11-21T05:36:19.900
Link: CVE-2020-6872
Redhat
No data.