Vulnerabilities > Hillstonenet > SC 6000 E3960 Firmware > 5.5

DATE	CVE	VULNERABILITY TITLE	RISK
2023-11-05	CVE-2023-46964	Cross-site Scripting vulnerability in Hillstonenet Sc-6000-E3960 Firmware 5.5 Cross Site Scripting (XSS) vulnerability in Hillstone Next Generation FireWall SG-6000-e3960 v.5.5 allows a remote attacker to execute arbitrary code via the use front-end filtering instead of back-end filtering. network low complexity hillstonenet CWE-79	6.1

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.