← All advisories

Unrated severityNVD Advisory· Published Jan 21, 2020· Updated Aug 4, 2024

CVE-2020-7470

CVE-2020-7470

Description

Sonoff TH 10 and 16 devices with firmware 6.6.0.21 allows XSS via the Friendly Name 1 field (after a successful login with the Web Admin Password).

Affected products

2

Sonoff/TH 10 and 16description
Sonoff/TH 10/16llm-create
Range: = firmware 6.6.0.21

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

sku11army.blogspot.com/2020/01/sonoff-sonoff-th-module-vuln-xss.htmlmitrex_refsource_MISC

News mentions

0

No linked articles in our index yet.