Cross-site scripting vulnerability in Wi-Fi STATION SH-52A (38JP_1_11G, 38JP_1_11J, 38JP_1_11K, 38JP_1_11L, 38JP_1_26F, 38JP_1_26G, 38JP_1_26J, 38JP_2_03B, and 38JP_2_03C) allows a remote unauthenticated attacker to inject an arbitrary script via WebUI of the device.
2021-12-01T03:15:06.590
2024-11-21T05:47:16.443
Modified
CVSSv3.1: 6.1 (MEDIUM)
AV:N/AC:M/Au:N/C:N/I:P/A:N
8.6
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | nttdocomo | wi-fi_station_sh-52a_firmware | 38jp_1_11g | Yes |
| Operating System | nttdocomo | wi-fi_station_sh-52a_firmware | 38jp_1_11j | Yes |
| Operating System | nttdocomo | wi-fi_station_sh-52a_firmware | 38jp_1_11k | Yes |
| Operating System | nttdocomo | wi-fi_station_sh-52a_firmware | 38jp_1_11l | Yes |
| Operating System | nttdocomo | wi-fi_station_sh-52a_firmware | 38jp_1_26f | Yes |
| Operating System | nttdocomo | wi-fi_station_sh-52a_firmware | 38jp_1_26g | Yes |
| Operating System | nttdocomo | wi-fi_station_sh-52a_firmware | 38jp_1_26j | Yes |
| Operating System | nttdocomo | wi-fi_station_sh-52a_firmware | 38jp_2_03b | Yes |
| Operating System | nttdocomo | wi-fi_station_sh-52a_firmware | 38jp_2_03c | Yes |
| Hardware | nttdocomo | wi-fi_station_sh-52a | - | No |