A cross-site scripting (XSS) vulnerability in the administration web panel on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices allows remote attackers to inject arbitrary web script or HTML via the language parameter.
2021-03-10T19:15:12.327
2024-11-21T05:27:03.940
Modified
CVSSv3.1: 4.8 (MEDIUM)
AV:N/AC:M/Au:S/C:N/I:P/A:N
6.8
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | netgear | gs116e_firmware | 2.6.0.43 | Yes |
| Hardware | netgear | gs116e | v2 | No |
| Operating System | netgear | jgs516pe_firmware | 2.6.0.43 | Yes |
| Hardware | netgear | jgs516pe | - | No |