westermo

dr-260_firmware

3 known vulnerabilities · sorted by CVSS score

CVE-2018-19612

The /uploadfile? functionality in Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers allows remote users to upload malicious file types and execute ASP code.

westermo / dr-250_firmware+2

Network

Published May 24, 2019

CVE-2018-19613

MEDIUM6.5

Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers allow CSRF.

westermo / dr-260_firmware+2

Network

Published May 24, 2019

CVE-2018-19614

MEDIUM6.1

XSS exists in the /cmdexec/cmdexe?cmd= function in Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers.

westermo / dr-250_firmware+2

Network

Published May 23, 2019