CVE-2021-36603

Description

Cross Site Scripting (XSS) in Tasmota firmware 6.5.0 allows remote attackers to inject JavaScript code via a crafted string in the field "Friendly Name 1".

Related CPE's

o tasmota_project tasmota 6.5.0 *******

References

https://github.com/arendst/Tasmota/issues/12221

ExploitIssue TrackingThird Party Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io