CVSS: 6.1EPSS: 0%CPEs: 10EXPL: 0CVE-2021-20847
https://notcve.org/view.php?id=CVE-2021-20847
Cross-site scripting vulnerability in Wi-Fi STATION SH-52A (38JP_1_11G, 38JP_1_11J, 38JP_1_11K, 38JP_1_11L, 38JP_1_26F, 38JP_1_26G, 38JP_1_26J, 38JP_2_03B, and 38JP_2_03C) allows a remote unauthenticated attacker to inject an arbitrary script via WebUI of the device. Una vulnerabilidad de tipo Cross-site scripting en Wi-Fi STATION SH-52A versiones (38JP_1_11G, 38JP_1_11J, 38JP_1_11K, 38JP_1_11L, 38JP_1_26F, 38JP_1_26G, 38JP_1_26J, 38JP_2_03B y 38JP_2_03C), permite a un atacante remoto no autenticado inyectar un script arbitrario por medio de la WebUI del dispositivo • https://jvn.jp/en/jp/JVN19482703/index.html https://www.nttdocomo.co.jp/support/product_update/sh52a/index.html • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •