CVE-2020-11448

An issue was discovered on Bell HomeHub 3000 SG48222070 devices. There is XSS related to the email field and the login page.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:bell:home_hub_3000_firmware:sg48222070:*:*:*:*:*:*:*
cpe:2.3:h:bell:home_hub_3000:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:57

Type Values Removed Values Added
References () https://0xem.ma/posts/HH3K-CVE/ - Exploit, Third Party Advisory () https://0xem.ma/posts/HH3K-CVE/ - Exploit, Third Party Advisory
References () https://support.bell.ca/Internet/Connection-help/Access_control_in_the_Home_Hub_modems - Product () https://support.bell.ca/Internet/Connection-help/Access_control_in_the_Home_Hub_modems - Product

25 Nov 2023, 02:25

Type Values Removed Values Added
New CVE

Information

Published : 2023-11-17 12:15

Updated : 2024-11-21 04:57


NVD link : CVE-2020-11448

Mitre link : CVE-2020-11448

CVE.ORG link : CVE-2020-11448


JSON object : View

Products Affected

bell

  • home_hub_3000_firmware
  • home_hub_3000
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')