Vulnerabilities > Openwrt > Openwrt > 21.02.1

DATE CVE VULNERABILITY TITLE RISK
2022-09-19 CVE-2022-38333 Out-of-bounds Read vulnerability in Openwrt
Openwrt before v21.02.3 and Openwrt v22.03.0-rc6 were discovered to contain two skip loops in the function header_value().
network
low complexity
openwrt CWE-125
7.5
7.5
2021-12-27 CVE-2021-45904 Cross-site Scripting vulnerability in Openwrt 21.02.1
OpenWrt 21.02.1 allows XSS via the Port Forwards Add Name screen.
network
low complexity
openwrt CWE-79
5.4
5.4
2021-12-27 CVE-2021-45905 Cross-site Scripting vulnerability in Openwrt 21.02.1
OpenWrt 21.02.1 allows XSS via the Traffic Rules Name screen.
network
low complexity
openwrt CWE-79
5.4
5.4
2021-12-27 CVE-2021-45906 Cross-site Scripting vulnerability in Openwrt 21.02.1
OpenWrt 21.02.1 allows XSS via the NAT Rules Name screen.
network
low complexity
openwrt CWE-79
5.4
5.4