Security Advisory

CVE-2019-12581

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-06-27 14:10:08

Last updated 2024-08-04 23:24:39

Assigner mitre

State PUBLISHED

Description

A reflective Cross-site scripting (XSS) vulnerability in the free_time_failed.cgi CGI program in selected Zyxel ZyWall, USG, and UAG devices allows remote attackers to inject arbitrary web script or HTML via the err_msg parameter.

← Browse all CVEs View on cve.org ↗