CVE-2024-6108

A vulnerability was found in Genexis Tilgin Home Gateway 322_AS0500-03_05_13_05. It has been classified as problematic. Affected is an unknown function of the file /vood/cgi-bin/vood_view.cgi?act=index&lang=EN# of the component Login. The manipulation of the argument errmsg leads to basic cross site scripting. It is possible to launch the attack remotely. VDB-268854 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Configurations

No configuration.

History

21 Nov 2024, 09:48

Type Values Removed Values Added
References () https://vuldb.com/?ctiid.268854 - () https://vuldb.com/?ctiid.268854 -
References () https://vuldb.com/?id.268854 - () https://vuldb.com/?id.268854 -
References () https://vuldb.com/?submit.353708 - () https://vuldb.com/?submit.353708 -

20 Jun 2024, 12:44

Type Values Removed Values Added
Summary
  • (es) Se encontró una vulnerabilidad en Genexis Tilgin Home Gateway 322_AS0500-03_05_13_05. Ha sido clasificada como problemática. Una función desconocida del archivo /vood/cgi-bin/vood_view.cgi?act=index&lang=ES# del componente Login es afectada por esta función. La manipulación del argumento errmsg conduce a cross site scripting básico. Es posible lanzar el ataque de forma remota. VDB-268854 es el identificador asignado a esta vulnerabilidad. NOTA: Se contactó primeramente con el proveedor sobre esta divulgación, pero no respondió de ninguna manera.

18 Jun 2024, 10:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-06-18 10:15

Updated : 2024-11-21 09:48


NVD link : CVE-2024-6108

Mitre link : CVE-2024-6108

CVE.ORG link : CVE-2024-6108


JSON object : View

Products Affected

No product.

CWE
CWE-80

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)