Vulnerabilities > Lenovo > PX4 400R Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2018-09-28 CVE-2018-9079 Cross-site Scripting vulnerability in Lenovo products
For some Iomega, Lenovo, LenovoEMC NAS devices versions 4.1.402.34662 and earlier, adversaries can craft URLs to modify the Document Object Model (DOM) of the page.
network
low complexity
lenovo CWE-79
critical
9.8