Cross-Site Scripting (XSS) Vulnerability in SonicWall SonicOS on NSA 2017 Q4 Devices

Cross-Site Scripting (XSS) Vulnerability in SonicWall SonicOS on NSA 2017 Q4 Devices

CVE-2018-5281 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

SonicWall SonicOS on Network Security Appliance (NSA) 2017 Q4 devices has XSS via the CFS Custom Category and Cloud AV DB Exclusion Settings screens.

Learn more about our Cloud Audit.