CVE-2013-5223

moderate-risk

Published 2013-11-19

Multiple cross-site scripting (XSS) vulnerabilities in D-Link DSL-2760U Gateway (Rev. E1) allow remote authenticated users to inject arbitrary web script or HTML via the (1) ntpServer1 parameter to sntpcfg.cgi, username parameter to (2) ddnsmngr.cmd or (3) todmngr.tod, (4) TodUrlAdd parameter to urlfilter.cmd, (5) appName parameter to scprttrg.cmd, (6) fltName in an add action or (7) rmLst parameter in a remove action to scoutflt.cmd, (8) groupName parameter to portmapcfg.cmd, (9) snmpRoCommunity parameter to snmpconfig.cgi, (10) fltName parameter to scinflt.cmd, (11) PolicyName in an add action or (12) rmLst parameter in a remove action to prmngr.cmd, (13) ippName parameter to ippcfg.cmd, (14) smbNetBiosName or (15) smbDirName parameter to samba.cgi, or (16) wlSsid parameter to wlcfg.wl.

Do I need to act?

35.5% chance of exploitation in next 30 days

EPSS score — higher than 65% of all CVEs

CISA KEV: actively exploited in the wild

On the Known Exploited Vulnerabilities catalog — federal agencies must patch

2 public exploits available

36987, 36988

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.4/10 Medium

NETWORK / LOW complexity

Affected Products (1)

Dsl-2760U Firmware

Affected Vendors

Dlink

References (37)

Broken Link http://osvdb.org/99603

Broken Link http://osvdb.org/99604

Broken Link http://osvdb.org/99605

Broken Link http://osvdb.org/99606

Broken Link http://osvdb.org/99607

Broken Link http://osvdb.org/99608

Broken Link http://osvdb.org/99609

Broken Link http://osvdb.org/99610

Broken Link http://osvdb.org/99611

Broken Link http://osvdb.org/99612

Broken Link http://osvdb.org/99613

Broken Link http://osvdb.org/99615

Broken Link http://osvdb.org/99616

Exploit http://packetstormsecurity.com/files/123976

Exploit http://seclists.org/fulldisclosure/2013/Nov/76

Vendor Advisory http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10002

Third Party Advisory https://exchange.xforce.ibmcloud.com/vulnerabilities/88723

Third Party Advisory https://exchange.xforce.ibmcloud.com/vulnerabilities/88724

Broken Link http://osvdb.org/99603

Broken Link http://osvdb.org/99604

and 17 more references

/ 100

moderate-risk

Severity 21/34 · High

Exploitability 23/34 · High

Exposure 5/34 · Minimal