Vulnerabilities > Adtran > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-07-24 CVE-2024-31971 Cross-site Scripting vulnerability in Adtran Netvanta 3120 Firmware 18.01.01.00.E
Multiple stored cross-site scripting (XSS) vulnerabilities on AdTran NetVanta 3120 18.01.01.00.E devices allow remote attackers to inject arbitrary JavaScript, as demonstrated by /mainPassword.html, /processIdentity.html, /public.html, /dhcp.html, /private.html, /hostname.html, /connectivity.html, /NetworkMonitor.html, /trafficMonitoringConfig.html, and /wizardMain.html.
network
low complexity
adtran CWE-79
4.8
2021-04-20 CVE-2021-25680 Cross-site Scripting vulnerability in Adtran Personal Phone Manager 10.8.1
The AdTran Personal Phone Manager software is vulnerable to multiple reflected cross-site scripting (XSS) issues.
network
low complexity
adtran CWE-79
6.1
2021-04-20 CVE-2021-25679 Cross-site Scripting vulnerability in Adtran Personal Phone Manager 10.8.1
The AdTran Personal Phone Manager software is vulnerable to an authenticated stored cross-site scripting (XSS) issues.
network
low complexity
adtran CWE-79
5.4