Vulnerabilities > Airangel > Hsmx APP 25 Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-11-10 CVE-2021-40517 Cross-site Scripting vulnerability in Airangel products
Airangel HSMX Gateway devices through 5.2.04 is vulnerable to stored Cross Site Scripting.
network
low complexity
airangel CWE-79
5.4
5.4
2021-11-10 CVE-2021-40518 Cross-Site Request Forgery (CSRF) vulnerability in Airangel products
Airangel HSMX Gateway devices through 5.2.04 allow CSRF.
network
low complexity
airangel CWE-352
6.5
6.5