H660GW
by Dasan
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2018-17869 | Hig | 0.57 | 8.8 | 0.00 | Oct 1, 2018 | DASAN H660GW devices do not implement any CSRF protection mechanism. | ||
| CVE-2018-17867 | Hig | 0.47 | 7.2 | 0.04 | Oct 1, 2018 | The Port Forwarding functionality on DASAN H660GW devices allows remote attackers to execute arbitrary code via shell metacharacters in the cgi-bin/adv_nat_virsvr.asp Addr parameter (aka the Local IP Address field). | ||
| CVE-2018-17868 | Med | 0.31 | 4.8 | 0.01 | Oct 1, 2018 | DASAN H660GW devices have Stored XSS in the Port Forwarding functionality. |
- risk 0.57cvss 8.8epss 0.00
DASAN H660GW devices do not implement any CSRF protection mechanism.
- risk 0.47cvss 7.2epss 0.04
The Port Forwarding functionality on DASAN H660GW devices allows remote attackers to execute arbitrary code via shell metacharacters in the cgi-bin/adv_nat_virsvr.asp Addr parameter (aka the Local IP Address field).
- risk 0.31cvss 4.8epss 0.01
DASAN H660GW devices have Stored XSS in the Port Forwarding functionality.