Unrated severityNVD Advisory· Published Jan 30, 2014· Updated Jun 17, 2026
CVE-2014-1612
CVE-2014-1612
Description
Cross-site scripting (XSS) vulnerability in login.esp in the Web Management Interface in Media5 Mediatrix 4402 VoIP Gateway with firmware Dgw 1.1.13.186 and earlier allows remote attackers to inject arbitrary web script or HTML via the username parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- cpe:2.3:a:media5:mediatrix_voip_gateway_4402_firmware:dgw_1.1.13.186:*:*:*:*:*:*:*
- cpe:2.3:h:media5:mediatrix_voip_gateway:4402:*:*:*:*:*:*:*
- Range: <= Dgw 1.1.13.186
Patches
Vulnerability mechanics
References
7- www.kb.cert.org/vuls/id/252294nvdUS Government Resource
- osvdb.org/102415nvd
- packetstormsecurity.com/files/124931/Mediatrix-4402-Cross-Site-Scripting.htmlnvd
- secunia.com/advisories/56638nvd
- www.securityfocus.com/archive/1/530871/100/0/threadednvd
- www.securityfocus.com/bid/65108nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/90656nvd
News mentions
0No linked articles in our index yet.