Vulnerabilities (CVE)

Filtered by vendor Arcadyan Subscribe
Filtered by product Vrv9506jac23 Firmware
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-9420 1 Arcadyan 2 Vrv9506jac23, Vrv9506jac23 Firmware 2024-11-21 N/A 6.5 MEDIUM
The login password of the web administrative dashboard in Arcadyan Wifi routers VRV9506JAC23 is sent in cleartext, allowing an attacker to sniff and intercept traffic to learn the administrative credentials to the router.
CVE-2020-9419 1 Arcadyan 2 Vrv9506jac23, Vrv9506jac23 Firmware 2024-11-21 N/A 5.4 MEDIUM
Multiple stored cross-site scripting (XSS) vulnerabilities in Arcadyan Wifi routers VRV9506JAC23 allow remote attackers to inject arbitrary web script or HTML via the hostName and domain_name parameters present in the LAN configuration section of the administrative dashboard.