MEDIUM🇵🇱 Wersja polska

CVE-2021-39285

CVSS 6.1v3.1pub. 2021-09-07upd. 2024-11-21

A XSS vulnerability exists in Versa Director Release: 16.1R2 Build: S8. An attacker can use the administration web interface URL to create a XSS based attack.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
  • Versa Networks Versa Director

    APP
    Versa-Networks
    16.1r2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
XSS
CWE
References

Related vulnerabilities

CVE-2019-25029CRITICAL9.8ten sam produkt

In Versa Director, the command injection is an attack in which the goal is execution of arbitrary commands on ...

CVE-2024-39717HIGH7.2⚠ KEVten sam produkt

The Versa Director GUI provides an option to customize the look and feel of the user interface. This option is...

CVE-2025-23168MEDIUM6.3ten sam produkt

The Versa Director SD-WAN orchestration platform implements Two-Factor Authentication (2FA) using One-Time Pas...

CVE-2018-16496MEDIUM5.3ten sam produkt

In Versa Director, the un-authentication request found.

CVE-2018-16498MEDIUM5.5ten sam produkt

In Versa Director, the unencrypted backup files stored on the Versa deployment contain credentials stored with...