CVE-2018-19391 (satcom_sailor_250_firmware, satcom_sailor_500_firmware)
Posted In: Uncategorized
Cobham Satcom Sailor 250 and 500 devices before 1.25 contained persistent XSS, which could be exploited by an unauthenticated threat actor via the /index.lua?pageID=Phone%20book name field.
Source: NIST
Leave a Reply