{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-22T13:57:32.398","vulnerabilities":[{"cve":{"id":"CVE-2020-26733","sourceIdentifier":"cve@mitre.org","published":"2021-01-14T16:15:17.787","lastModified":"2024-11-21T05:20:16.860","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Cross Site Scripting (XSS) in Configuration page in SKYWORTH GN542VF Hardware Version 2.0 and Software Version 2.0.0.16 allows authenticated attacker to inject their own script into the page via DDNS Configuration Section."},{"lang":"es","value":"Un ataque de tipo Cross Site Scripting (XSS) en la página de Configuración en SKYWORTH GN542VF Hardware Versión 2.0 y Software Versión 2.0.0.16, permite a un atacante autenticado inyectar su propio script en la página por medio de la Sección de Configuración DDNS"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N","baseScore":5.4,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"REQUIRED","scope":"CHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.3,"impactScore":2.7}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:S/C:N/I:P/A:N","baseScore":3.5,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":6.8,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:skyworth:gn542vf_firmware:2.0.0.16:*:*:*:*:*:*:*","matchCriteriaId":"C292A10C-473F-41CF-B12A-B4F5039EC97F"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:skyworth:gn542vf:2.0:*:*:*:*:*:*:*","matchCriteriaId":"93AF8F37-188A-4CC6-B304-76A17C32BA1E"}]}]}],"references":[{"url":"https://github.com/swzhouu/CVE-2020-26733","source":"cve@mitre.org","tags":["Exploit","Third Party Advisory"]},{"url":"https://github.com/swzhouu/CVE-2020-26733","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Exploit","Third Party Advisory"]}]}}]}