Security Advisory

CVE-2020-5781

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-23 15:33:52

Last updated 2024-08-04 08:39:25

Assigner tenable

State PUBLISHED

Description

In IgniteNet HeliOS GLinq v2.2.1 r2961, the langSelection parameter is stored in the luci configuration file (/etc/config/luci) by the authenticator.htmlauth function. When modified with arbitrary javascript, this causes a denial-of-service condition for all other users.

← Browse all CVEs View on cve.org ↗