CVE-2024-6355

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Jun 26, 2024
Updated: Jun 27, 2024
CWE ID 79

Summary

CVE-2024-6355 is a newly disclosed vulnerability affecting the Genexis Tilgin Fiber Home Gateway HG1522 CSx000-01_09_01_12. The issue lies in an unknown functionality of the /status/product_info/ file. Manipulation of the product_info argument can lead to a cross-site scripting attack, which can be executed remotely. This vulnerability, identified as VDB-269755, has been disclosed to the public, increasing the risk of exploitation. Regrettably, the vendor did not respond to early notifications about this disclosure.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share