CVSS: 5.4EPSS: 0%CPEs: 12EXPL: 1CVE-2018-5280
https://notcve.org/view.php?id=CVE-2018-5280
SonicWall SonicOS on Network Security Appliance (NSA) 2016 Q4 devices has XSS via the Configure SSO screens. SonicWall SonicOS en dispositivos Network Security Appliance (NSA) 2016 Q4 tiene Cross-Site Scripting (XSS) a través de las pantallas de configuración de SSO. • http://www.securityfocus.com/bid/102438 https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0001 https://www.vulnerability-lab.com/get_content.php?id=1725 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.4EPSS: 0%CPEs: 8EXPL: 1CVE-2018-5281
https://notcve.org/view.php?id=CVE-2018-5281
SonicWall SonicOS on Network Security Appliance (NSA) 2017 Q4 devices has XSS via the CFS Custom Category and Cloud AV DB Exclusion Settings screens. SonicWall SonicOS en dispositivos Network Security Appliance (NSA) 2017 Q4 tiene Cross-Site Scripting (XSS) a través de las pantallas Cloud AV DB Exclusion Settings. • http://www.securityfocus.com/bid/102443 https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0002 https://www.vulnerability-lab.com/get_content.php?id=1729 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •