Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in the Management Console in Alcatel-Lucent Motive Home Device Manager (HDM) before 4.2 allow remote attackers to inject arbitrary web script or HTML via the (1) deviceTypeID parameter to DeviceType/getDeviceType.do; the (2) policyActionClass or (3) policyActionName parameter to PolicyAction/findPolicyActions.do; the deviceID parameter to (4) SingleDeviceMgmt/getDevice.do or (5) device/editDevice.do; the operation parameter to (6) ajax.do or (7) xmlHttp.do; or the (8) policyAction, (9) policyClass, or (10) policyName parameter to policy/findPolicies.do.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Nokia Alcatel-Lucent Motive Home Device Manager 跨站脚本漏洞
Vulnerability Description
Nokia Alcatel-Lucent Motive Home Device Manager(HDM)是芬兰诺基亚(Nokia)公司的一款可通过帮助桌面管理和控制家庭网络设备的设备管理器。Management Console是其中的一个管理控制端口。 Nokia Alcatel-Lucent Motive HDM 4.2之前的版本中的Management Console存在跨站脚本漏洞。远程攻击者可利用该漏洞注入任意Web脚本或HTML。
CVSS Information
N/A
Vulnerability Type
N/A