Comodo Dome Firewall: Malicious Script Injection via Firewall Settings

Summary

Comodo Dome Firewall version 2.7.0 has a security flaw that lets hackers inject malicious code into users' browsers by manipulating firewall settings. This can happen when a user visits a compromised website. To secure your system, update to the latest version of Comodo Dome Firewall.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
comodo	dome_firewall	2.7.0	–

Original title

Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by submitting crafted input to the openvpn_advanced endpoint. At...

Original description

Comodo Dome Firewall 2.7.0 contains a reflected cross-site scripting vulnerability that allows attackers to inject malicious scripts by submitting crafted input to the openvpn_advanced endpoint. Attackers can inject JavaScript code through the GLOBAL_NETWORKS and GLOBAL_DNS parameters via POST requests to execute arbitrary scripts in users' browsers.

nvd CVSS3.1 6.1

nvd CVSS4.0 5.1

Vulnerability type

CWE-79 Cross-site Scripting (XSS)

https://cdome.comodo.com/firewall/ Product
https://secure.comodo.com/home/purchase.php?pid=106&license=try&track=9278&af=92... Not Applicable
https://www.exploit-db.com/exploits/46408 Exploit Third Party Advisory
https://www.vulncheck.com/advisories/comodo-dome-firewall-reflected-cross-site-s... Broken Link