CVE-2020-22181

EUVD-2020-14946
A reflected cross site scripting (XSS) vulnerability was discovered on Samsung sww-3400rw Router devices via the m2 parameter of the sess-bin/command.cgi
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.1 MEDIUM
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 74%
Affected Products (NVD)
VendorProductVersion
samsungsww-3400rw_firmware
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/gusrmsdlrh/Vulner/blob/master/Sww-3400rw.md
https://security.samsungmobile.com/securityUpdate.smsb
https://github.com/gusrmsdlrh/Vulner/blob/master/Sww-3400rw.md
https://security.samsungmobile.com/securityUpdate.smsb