Vulnerability Description
A vulnerability in the web-based management interface of RAD SecFlow-1v through 2020-05-21 could allow an authenticated attacker to upload a JavaScript file, with a stored XSS payload, that will remain stored in the system as an OVPN file in Configuration-Services-Security-OpenVPN-Config or as the static key file in Configuration-Services-Security-OpenVPN-Static Keys. This payload will execute each time a user opens an affected web page. This could be exploited in conjunction with CVE-2020-13259.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Rad | Secflow-1V Firmware | os-image_sf_0290_2.3.01.26 |
| Rad | Secflow-1V | - |
Related Weaknesses (CWE)
References
- https://cxsecurity.com/issue/WLB-2020090063ExploitThird Party Advisory
- https://www.exploit-db.com/exploits/48807ExploitThird Party AdvisoryVDB Entry
- https://www.rad.com/products/secflow-1v-IIoT-Gateway#panels-ipe-paneid-143837ProductVendor Advisory
- https://cxsecurity.com/issue/WLB-2020090063ExploitThird Party Advisory
- https://www.exploit-db.com/exploits/48807ExploitThird Party AdvisoryVDB Entry
- https://www.rad.com/products/secflow-1v-IIoT-Gateway#panels-ipe-paneid-143837ProductVendor Advisory
FAQ
What is CVE-2020-13260?
CVE-2020-13260 is a vulnerability with a CVSS score of 6.1 (MEDIUM). A vulnerability in the web-based management interface of RAD SecFlow-1v through 2020-05-21 could allow an authenticated attacker to upload a JavaScript file, with a stored XSS payload, that will remai...
How severe is CVE-2020-13260?
CVE-2020-13260 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-13260?
Check the references section above for vendor advisories and patch information. Affected products include: Rad Secflow-1V Firmware, Rad Secflow-1V.