CVE-2020-8170

CVE-2020-8170

Vendor N/A

Product AirMax AirOS for TI, XW and XM boards

Weakness CWE-79 · XSS

Published May 26, 2020

Last update August 4, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

We have recently released new version of AirMax AirOS firmware v6.3.0 for TI, XW and XM boards that fixes vulnerabilities found on AirMax AirOS v6.2.0 and prior TI, XW and XM boards, according to the description below:Multiple end-points with parameters vulnerable to reflected cross site scripting (XSS), allowing attackers to abuse the user' session information and/or account takeover of the admin user.Mitigation:Update to the latest AirMax AirOS firmware version available at the AirMax download page.

Key dates

02Disclosure timeline

May 26, 2020 CVE published

August 4, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2020-8170

Related vulnerabilities

Identifiers

CVE CVE-2020-8170

CWE CWE-79

Affected versions

Vendor N/A

Product AirMax AirOS for TI, XW and XM boards

Affected Affected firmware versions are v6.2.0 and prior

Vendor N/A

Product AirMax AirOS for TI, XW and XM boards

Affected Fixed firmware version is v6.3.0

01Description

02Disclosure timeline

03References

04Related CVE