Vulnerabilities > Hillstonenet

DATE	CVE	VULNERABILITY TITLE	RISK
2024-08-26	CVE-2024-8073	Command Injection vulnerability in Hillstonenet web Application Firewall 5.5R62.6.7/5.5R62.8.13 Improper Input Validation vulnerability in Hillstone Networks Hillstone Networks Web Application Firewall on 5.5R6 allows Command Injection.This issue affects Hillstone Networks Web Application Firewall: from 5.5R6-2.6.7 through 5.5R6-2.8.13. network low complexity hillstonenet CWE-77 critical	9.8
2023-11-05	CVE-2023-46964	Cross-site Scripting vulnerability in Hillstonenet Sc-6000-E3960 Firmware 5.5 Cross Site Scripting (XSS) vulnerability in Hillstone Next Generation FireWall SG-6000-e3960 v.5.5 allows a remote attacker to execute arbitrary code via the use front-end filtering instead of back-end filtering. network low complexity hillstonenet CWE-79	6.1
2022-12-27	CVE-2022-45778	Unspecified vulnerability in Hillstonenet products https://www.hillstonenet.com.cn/ Hillstone Firewall SG-6000 <= 5.0.4.0 is vulnerable to Incorrect Access Control. network low complexity hillstonenet critical	9.8

Vulnerabilities > Hillstonenet {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Hillstonenet"}]}