Intrusion PreventionNETGEAR.PPoE.XSS
Description
This indicates an attack attempt to exploit a Cross-Site Scripting vulnerability on Netgear routers.
The vulnerability is due to lack of sanitation of user supplied input. A remote attacker may be able to exploit this to inject malicious script code into the web pages. When an unsuspecting victim views these crafted web pages via a web browser, the injected script code will be automatically executed.
Affected Products
D3600, running firmware versions prior to 1.0.0.76
D6000, running firmware versions prior to 1.0.0.76
D6100, running firmware versions prior to 1.0.0.63
D7800, running firmware versions prior to 1.0.1.47
DM200, running firmware versions prior to 1.0.0.61
R7500v2, running firmware versions prior to 1.0.3.40
R7800, running firmware versions prior to 1.0.2.60
RBK50, running firmware versions prior to 2.3.0.32
RBR50, running firmware versions prior to 2.3.0.32
RBS50, running firmware versions prior to 2.3.0.32
Impact
System Compromise: Remote attackers can execute arbitrary script code within the context of the target user's browser
Recommended Actions
Refer to the vendor's advisory for updates:
https://kb.netgear.com/000061213/Security-Advisory-for-Stored-Cross-Site-Scripting-on-Some-Routers-Gateways-and-WiFi-Systems-PSV-2018-0248
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
| ID | 46305 |
| Created | Jul 11, 2018 |
| Updated | Aug 09, 2023 |
| Risk |
|
| CVE ID | |
| Default Action | drop |
| Active | |
| Affected OS | Other |
| Affected App | Other |