CVE-2018-19630 - OpenCVE

cgi_handle_request in uhttpd in OpenWrt through 18.06.1 and LEDE through 17.01 has unauthenticated reflected XSS via the URI, as demonstrated by a cgi-bin/?[XSS] URI.

No CVSS v3.1

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:N/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Openwrt	Lede Openwrt

Configuration 1 [-]

OR	cpe:2.3:o:openwrt:lede::::::::
	cpe:2.3:o:openwrt:openwrt::::::::

References

Link	Resource
https://bugs.openwrt.org/index.php?do=details&task_id=1974	Exploit Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2018-11-28T10:00:00

Updated: 2018-11-28T09:57:01

Reserved: 2018-11-28T00:00:00

Link: CVE-2018-19630

JSON object: View

NVD Information

Status : Analyzed

Published: 2018-11-28T10:29:00.190

Modified: 2018-12-31T20:39:33.713

Link: CVE-2018-19630

JSON object: View

Redhat Information

No data.

CWE

CWE-79

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:openwrt:lede:*:*:*:*:*:*:*:*", "matchCriteriaId": "545D58F2-AC13-48C2-9E53-59C7E6ADD573", "versionEndIncluding": "17.01", "vulnerable": true}, {"criteria": "cpe:2.3:o:openwrt:openwrt:*:*:*:*:*:*:*:*", "matchCriteriaId": "4587E9A5-4D9B-4306-9DD4-94B2CEF1C803", "versionEndIncluding": "18.06.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "cgi_handle_request in uhttpd in OpenWrt through 18.06.1 and LEDE through 17.01 has unauthenticated reflected XSS via the URI, as demonstrated by a cgi-bin/?[XSS] URI."}, {"lang": "es", "value": "cgi_handle_request en uhttpd en OpenWrt hasta la versi\u00f3n 18.06.1 y LEDE hasta la versi\u00f3n 17.01 tiene Cross-Site Scripting (XSS) reflejado sin autenticaci\u00f3n mediante el URI, tal y como queda demostrado con un URI cgi-bin/?[XSS]."}], "id": "CVE-2018-19630", "lastModified": "2018-12-31T20:39:33.713", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2018-11-28T10:29:00.190", "references": [{"source": "cve@mitre.org", "tags": ["Exploit", "Vendor Advisory"], "url": "https://bugs.openwrt.org/index.php?do=details&task_id=1974"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}