Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A cross-site scripting (XSS) vulnerability in the configuration web interface of the Jinan USR IOT USR-WIFI232-S/T/G2/H Low Power WiFi Module with web version 1.2.2 allows attackers to leak credentials of the Wi-Fi access point the module is logged into, and the web interface login credentials, by opening a Wi-Fi access point nearby with a malicious SSID.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款USR IOT产品跨站脚本漏洞
Vulnerability Description
USR IOT USR-WIFI232-S等都是中国优特物联网技术(USR IOT)公司的一款低电源串行无线WIFI模块。 多款USR IOT产品中的配置Web界面存在跨站脚本漏洞。该漏洞源于WEB应用缺少对客户端数据的正确验证。攻击者可利用该漏洞执行客户端代码。以下产品及版本受到影响:使用1.2.2版本固件的USR IOT USR-WIFI232-S;使用1.2.2版本固件的USR IOT USR-WIFI232-T;使用1.2.2版本固件的USR IOT USR-WIFI232-G2;使用1.2.2版
CVSS Information
N/A
Vulnerability Type
N/A