CVE-2020-5781

Summary

In IgniteNet HeliOS GLinq v2.2.1 r2961, the langSelection parameter is stored in the luci configuration file (/etc/config/luci) by the authenticator.htmlauth function. When modified with arbitrary javascript, this causes a denial-of-service condition for all other users.

Affected Software

VendorProductVersion RangeStatus
n/aIgniteNet HeliOS GLinqv2.2.1 r2961affected

Weaknesses

  • Denial of Service

ADP Enrichment

CVE Program Container

Additional References

References