Vulnerability Description
Wireless-N WiFi Repeater REV 1.0 (28.08.06.1) suffers from a reflected XSS vulnerability due to unsanitized SSID value when the latter is displayed in the /repeater.html page ("Repeater Wizard" homepage section).
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Acexy Wireless-N Wifi Repeater Project | Acexy Wireless-N Wifi Repeater Firmware | 28.08.06.1 |
| Acexy Wireless-N Wifi Repeater Project | Acexy Wireless-N Wifi Repeater | 1.0 |
Related Weaknesses (CWE)
References
- https://blog-ssh3ll.medium.com/acexy-wireless-n-wifi-repeater-vulnerabilities-8bExploitThird Party Advisory
- https://www.amazon.com/Extender-Wireless-Repeater-External-Antennas/dp/B08GMCC6XProduct
- https://blog-ssh3ll.medium.com/acexy-wireless-n-wifi-repeater-vulnerabilities-8bExploitThird Party Advisory
- https://www.amazon.com/Extender-Wireless-Repeater-External-Antennas/dp/B08GMCC6XProduct
FAQ
What is CVE-2021-28160?
CVE-2021-28160 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Wireless-N WiFi Repeater REV 1.0 (28.08.06.1) suffers from a reflected XSS vulnerability due to unsanitized SSID value when the latter is displayed in the /repeater.html page ("Repeater Wizard" homepa...
How severe is CVE-2021-28160?
CVE-2021-28160 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-28160?
Check the references section above for vendor advisories and patch information. Affected products include: Acexy Wireless-N Wifi Repeater Project Acexy Wireless-N Wifi Repeater Firmware, Acexy Wireless-N Wifi Repeater Project Acexy Wireless-N Wifi Repeater.