← Back

Dr 260 Firmware

dr-260_firmware

Vendor: Westermo • 3 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2018-19613
1Westermo
3Dr 250 Firmware
Dr 260 FirmwareMr 260 Firmware
Nov 21, 2024
May 24, 2019
N/A· v4
6.5 MEDIUM· v3
4.3 MEDIUM· v2
Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers allow CSRF.
CVE-2018-19612
1Westermo
3Dr 250 Firmware
Dr 260 FirmwareMr 260 Firmware
Nov 21, 2024
May 24, 2019
N/A· v4
8.8 HIGH· v3
6.5 MEDIUM· v2
The /uploadfile? functionality in Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers allows remote users to upload malicious file types and execute ASP code.
CVE-2018-19614
1Westermo
3Dr 250 Firmware
Dr 260 FirmwareMr 260 Firmware
Nov 21, 2024
May 23, 2019
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
XSS exists in the /cmdexec/cmdexe?cmd= function in Westermo DR-250 Pre-5162 and DR-260 Pre-5162 routers.