CVE-2017-8838
MEDIUM
6.1
CVSS Severity Score
Vulnerability Description
XSS via syncid exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_580hw2_710hw3_1350hw2_2500-7.0.1-build2093. The affected script is cgi-bin/HASync/hasync.cgi.
Affected Platforms (CPE)
💻
Peplink
B305hw2 Firmware
= 7.0.1💻
Peplink
380hw6 Firmware
= 7.0.1💻
Peplink
580hw2 Firmware
= 7.0.1💻
Peplink
710hw3 Firmware
= 7.0.1💻
Peplink
1350hw2 Firmware
= 7.0.1💻
Peplink