Netgear

Ssl312

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2009-0680

Exploit
  • EPSS 16.83%
  • Published 22.02.2009 22:30:01
  • Last modified 09.04.2025 00:30:58

cgi-bin/welcome/VPN_only in the web interface in Netgear SSL312 allows remote attackers to cause a denial of service (device crash) via a crafted query string, as demonstrated using directory traversal sequences.

4.3

CVE-2007-5562

Exploit
  • EPSS 2.31%
  • Published 18.10.2007 20:17:00
  • Last modified 09.04.2025 00:30:58

Cross-site scripting (XSS) vulnerability in cgi-bin/welcome (aka the login page) in Netgear SSL312 PROSAFE SSL VPN-Concentrator 25 allows remote attackers to inject arbitrary web script or HTML via the err parameter in the context of an error page.