The Web manager (aka Commander) on Korenix JetPort 5601 and 5601f devices has Persistent XSS via the Port Alias field under Serial Setting.
2019-03-12T20:29:00.407
2024-11-21T04:52:10.983
Modified
CVSSv3.0: 6.1 (MEDIUM)
AV:N/AC:M/Au:N/C:N/I:P/A:N
8.6
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | korenix | jetport_web_manager | - | Yes |
| Operating System | korenix | jetport_5601_firmware | - | Yes |
| Hardware | korenix | jetport_5601 | - | No |
| Operating System | korenix | jetport_5601f_firmware | - | Yes |
| Hardware | korenix | jetport_5601f | - | No |