CVE-2014-2968
Cross-site scripting (XSS) vulnerability in the web interface on the Huawei E355 CH1E355SM modem with software 21.157.37.01.910 and Web UI 11.001.08.00.03 allows remote attackers to inject arbitrary web script or HTML via an SMS message.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0042 (0.4%)
Percentil: 62.0%
EPSS: 2026-05-06
Afecta
huawei:e355_web_uihuawei:e355_firmwarehuawei:e355Descripción técnica
Cross-site scripting (XSS) vulnerability in the web interface on the Huawei E355 CH1E355SM modem with software 21.157.37.01.910 and Web UI 11.001.08.00.03 allows remote attackers to inject arbitrary web script or HTML via an SMS message.
Publicada: 24/7/2014, 14:55:07
Última modificación: 6/5/2026, 22:30:45