A stored cross-site scripting (XSS) vulnerability was discovered in the Web Interface for OpenWRT LuCI version 19.07 which allows attackers to inject arbitrary Javascript in the OpenWRT Hostname via the Hostname Change operation.
References
Link | Resource |
---|---|
http://openwrt.com | Product |
http://www.openwall.com/lists/oss-security/2021/11/09/1 | Mailing List Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-05-25T13:41:35
Updated: 2021-11-09T15:06:07
Reserved: 2021-05-20T00:00:00
Link: CVE-2021-33425
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-05-25T14:15:07.760
Modified: 2023-05-24T15:01:02.763
Link: CVE-2021-33425
JSON object: View
Redhat Information
No data.
CWE