Vulnerabilities > Nat32

DATE CVE VULNERABILITY TITLE RISK
2018-02-20 CVE-2018-6941 Cross-Site Request Forgery (CSRF) vulnerability in Nat32 2.2
A /shell?cmd= CSRF issue exists in the HTTPD component of NAT32 v2.2 Build 22284 devices that can be exploited for Remote Code Execution in conjunction with XSS.
network
low complexity
nat32 CWE-352
8.8
8.8
2018-02-20 CVE-2018-6940 Cross-site Scripting vulnerability in Nat32 2.2
A /shell?cmd= XSS issue exists in the HTTPD component of NAT32 v2.2 Build 22284 devices that can be exploited for Remote Code Execution in conjunction with CSRF.
network
low complexity
nat32 CWE-79
6.1
6.1