Netis-Systems DL4343
Approved changes feed: RSS · Atom
cpe:2.3:h:netis-systems:dl4343:-:*:*:*:*:*:*:*
part: h version: - update: *
| Vendor | Netis Systems (672828a5-2e28-5c8f-b339-4984bcfc4393) |
|---|---|
| Product | Dl4343 (33177c92-2a3b-5f34-abd1-ddf9c0688739) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-20076 |
not_vulnerable | 2026-06-03 14:40:11.453038 |
Details available
On Netis DL4323 devices, XSS exists via the form2Ddns.cgi username parameter (DynDns settings of the Dynamic DNS Configuration).
Published: 2019-12-29T23:28:52.000Z
Updated: 2024-08-05T02:32:10.501Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-20075 |
not_vulnerable | 2026-06-03 14:40:11.452710 |
Details available
On Netis DL4323 devices, pingrtt_v6.html has XSS (Ping6 Diagnostic).
Published: 2019-12-29T23:29:02.000Z
Updated: 2024-08-05T02:32:10.541Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-20074 |
not_vulnerable | 2026-06-03 14:40:11.452304 |
Details available
On Netis DL4323 devices, any user role can view sensitive information, such as a user password or the FTP password, via the form2saveConf.cgi page.
Published: 2019-12-29T23:29:12.000Z
Updated: 2024-08-05T02:32:10.500Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-20073 |
not_vulnerable | 2026-06-03 14:40:11.451969 |
Details available
On Netis DL4323 devices, XSS exists via the form2userconfig.cgi username parameter (User Account Configuration).
Published: 2019-12-29T23:29:24.000Z
Updated: 2024-08-05T02:32:10.514Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-20072 |
not_vulnerable | 2026-06-03 14:40:11.451538 |
Details available
On Netis DL4323 devices, XSS exists via the form2Ddns.cgi hostname parameter (Dynamic DNS Configuration).
Published: 2019-12-29T23:29:43.000Z
Updated: 2024-08-05T02:32:10.512Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-20071 |
not_vulnerable | 2026-06-03 14:40:11.451080 |
Details available
On Netis DL4323 devices, CSRF exists via form2logaction.cgi to delete all logs.
Published: 2019-12-29T23:29:53.000Z
Updated: 2024-08-05T02:32:10.485Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-20070 |
not_vulnerable | 2026-06-03 14:40:11.450532 |
Details available
On Netis DL4323 devices, XSS exists via the urlFQDN parameter to form2url.cgi (aka the Keyword field of the URL Blocking Configuration).
Published: 2019-12-29T23:30:04.000Z
Updated: 2024-08-05T02:32:10.615Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.