CVE-2020-5785

Publication date

2020-10-01 19:43:32

Family

tenable

State

PUBLISHED

Description

Insufficient output sanitization in Teltonika firmware TRB2_R_00.02.04.3 allows an unauthenticated attacker to conduct reflected cross-site scripting via a crafted ‘action’ or ‘pkg_name’ parameter.