Vulnerabilities (CVE)

Filtered by vendor Opengear Subscribe
Filtered by product Opengear
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-14456 1 Opengear 1 Opengear 2024-02-28 3.5 LOW 5.4 MEDIUM
Opengear console server firmware releases prior to 4.5.0 have a stored XSS vulnerability related to serial port logging. If a malicious user of an external system (connected to a serial port on an Opengear console server) sends crafted text to a serial port (that has logging enabled), the text will be replayed when the logs are viewed. Exploiting this vulnerability requires access to the serial port and/or console server.