CVE-2024-6355

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Jun 26, 2024

Updated: Jun 27, 2024

CWE ID 79

Summary

CVE-2024-6355 is a newly disclosed vulnerability affecting the Genexis Tilgin Fiber Home Gateway HG1522 CSx000-01_09_01_12. The issue lies in an unknown functionality of the /status/product_info/ file. Manipulation of the product_info argument can lead to a cross-site scripting attack, which can be executed remotely. This vulnerability, identified as VDB-269755, has been disclosed to the public, increasing the risk of exploitation. Regrettably, the vendor did not respond to early notifications about this disclosure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/wqrJnZ
https://www.cve.org/CVERecord?id=CVE-2024-6355
https://nvd.nist.gov/vuln/detail/CVE-2024-6355

Back to Vulnerability Database

CVE-2024-6355

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations