Medium severity5.4NVD Advisory· Published Feb 3, 2023· Updated Jun 17, 2026
CVE-2021-37376
CVE-2021-37376
Description
Cross Site Scripting (XSS) vulnerability in Teradek Bond, Bond 2 and Bond Pro firmware version 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. NOTE: Vedor states the product has reached End of Life and will not be receiving any firmware updates to address this issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Teradek/Bonddescription
- Range: <=7.3.x
Patches
Vulnerability mechanics
References
2- tbutler.org/2021/04/29/teradek-vulnerability-advisorynvdExploitThird Party Advisory
- teradek.com/collections/cube2nvdProductVendor Advisory
News mentions
0No linked articles in our index yet.