CVE-2018-19614

MEDIUM

Westermo DR-250/DR-260 <5162 - XSS

Title source: llm
STIX 2.1

Description

XSS exists in the /cmdexec/cmdexe?cmd= function in Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers.

References (2)

Core 2
Core References
Vendor Advisory x_refsource_misc
https://www.westermo.us/

Scores

CVSS v3 6.1
EPSS 0.0031
EPSS Percentile 54.3%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (3)
westermo/dr-250_firmware
westermo/dr-260_firmware
westermo/mr-260_firmware
Published May 23, 2019
Tracked Since Feb 18, 2026