Security Advisory

CVE-2015-7242

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2016-01-12 19:00:00

Last updated 2024-08-06 07:43:45

Assigner mitre

State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in the Push-Service-Mails feature in AVM FRITZ!OS before 6.30 allows remote attackers to inject arbitrary web script or HTML via the display name in the FROM field of an SIP INVITE message.

← Browse all CVEs View on cve.org ↗