Vulnerabilities > Teradek > Bond Firmware > 7.3.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-02-03 | CVE-2021-37376 | Cross-site Scripting vulnerability in Teradek Bond 2 Firmware, Bond Firmware and Bond PRO Firmware Cross Site Scripting (XSS) vulnerability in Teradek Bond, Bond 2 and Bond Pro firmware version 7.3.x and earlier allows remote attackers to run arbitrary code via the Friendly Name field in System Information Settings. | 5.4 |