漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
WatchGuard Firebox Stored Cross-Site-Scripting (XSS) Vulnerability in ConnectWise Technology Integration Configuration
Vulnerability Description
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS (ConnectWise Technology Integration module) allows Stored XSS. This vulnerability is an additional unmitigated attack path for CVE-2025-13937. This issue affects Fireware OS 12.4 up to and including 12.12, 12.5 up to and including 12.5.18, and 2025.1 up to and including 2026.2.
CVSS Information
N/A
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Vulnerability Title
WatchGuard Fireware OS 跨站脚本漏洞
Vulnerability Description
WatchGuard Fireware OS是美国WatchGuard公司的一款网络防火墙的操作系统。 WatchGuard Fireware OS存在跨站脚本漏洞,该漏洞源于ConnectWise Technology Integration module在Web页面生成过程中对输入清理不当,容易受到存储型跨站脚本攻击。以下版本受到影响:12.4版本至12.12版本、12.5版本至12.5.18版本和2025.1版本至2026.2版本。
CVSS Information
N/A
Vulnerability Type
N/A