Description
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/password/web/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
Published: 2026-04-02
Score: 5.1 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Stored Cross-Site Scripting
Action: Apply Patch
AI Analysis

Impact

The vulnerability in Endian Firewall allows an authenticated attacker to inject arbitrary JavaScript through the remark field on the /manage/password/web/ page. This content is stored and executed whenever other users view the page, which can lead to client-side attacks. Based on the description, it is inferred that the stored scripts could be used to perform actions such as defacement or exploitation of session data.

Affected Systems

Affected systems include Endian Firewall products running version 3.3.25 or earlier, specifically the 2.1.2, 2.4, and community editions. Any installation that exposes the /manage/password/web/ page to authenticated users is vulnerable. The flaw is present in all listed versions and is not limited to a specific build.

Risk and Exploitability

The CVSS score of 5.1 indicates moderate severity, while the EPSS score of less than 1% suggests that exploitation is currently unlikely. The vulnerability is not listed in CISA's Known Exploited Vulnerabilities catalog. Attackers would need authenticated access to the management interface, after which they can store and trigger malicious scripts; the remote web attack surface is mitigated by the authentication requirement, but the impact remains confined to browsers of other authenticated users.

Generated by OpenCVE AI on April 7, 2026 at 20:22 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Endian Firewall to a version newer than 3.3.25 that removes the stored XSS flaw.
  • Limit access to the /manage/password/web/ page to trusted administrators only and monitor the remark field for unexpected script code.
  • Validate or encode input on the remark field to prevent stored script injection.
  • Check the vendor’s support portal or community forums for any interim patches or temporary workarounds.

Generated by OpenCVE AI on April 7, 2026 at 20:22 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 07 Apr 2026 15:15:00 +0000

Type Values Removed Values Added
First Time appeared Endian firewall Community
CPEs cpe:2.3:a:endian:firewall_community:*:*:*:*:*:*:*:*
Vendors & Products Endian firewall Community

Fri, 03 Apr 2026 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Thu, 02 Apr 2026 15:15:00 +0000

Type Values Removed Values Added
Description Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/password/web/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
Title Endian Firewall /manage/password/web/ remark Stored Cross-Site Scripting
First Time appeared Endian
Endian firewall
Weaknesses CWE-79
CPEs cpe:2.3:a:endian:firewall:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:endian:firewall:2.4:*:*:*:*:*:*:*
cpe:2.3:a:endian:firewall:3.3.25:*:*:*:*:*:*:*
Vendors & Products Endian
Endian firewall
References
Metrics cvssV3_1

{'score': 6.4, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N'}

cvssV4_0

{'score': 5.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N'}

Subscriptions

Endian Firewall Firewall Community
cve-icon MITRE

Status: PUBLISHED

Assigner: VulnCheck

Published:

Updated: 2026-04-02T16:22:22.367Z

Reserved: 2026-03-30T20:26:18.726Z

Link: CVE-2026-34823

cve-icon Vulnrichment

Updated: 2026-04-02T16:16:59.691Z

cve-icon NVD

Status : Analyzed

Published: 2026-04-02T15:16:51.577

Modified: 2026-04-07T14:02:49.410

Link: CVE-2026-34823

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-08T19:55:45Z

Weaknesses