Vulnerabilities > Zyxel > Sbg3300 N
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-10-04 | CVE-2014-7278 | Improper Input Validation vulnerability in Zyxel Sbg3300-N and Sbg3300-N Firmware The login page on the ZyXEL SBG-3300 Security Gateway with firmware 1.00(AADY.4)C0 and earlier allows remote attackers to cause a denial of service (persistent web-interface outage) via JavaScript code within unspecified "welcome message" form data that is improperly handled during use for the loginMsg variable's value, a different vulnerability than CVE-2014-7277. | 5.0 |
| 2014-10-04 | CVE-2014-7277 | Cross-Site Scripting vulnerability in Zyxel Sbg3300-N and Sbg3300-N Firmware Cross-site scripting (XSS) vulnerability in the login page on the ZyXEL SBG-3300 Security Gateway with firmware 1.00(AADY.4)C0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified "welcome message" form data that is improperly handled during rendering of the loginMessage list item, a different vulnerability than CVE-2014-7278. | 4.3 |