CPSEC-7: Cross Site Scripting Mitigation
October 19, 2018
Summary: Cradlepoint’s security auditor, Carve Systems, discovered two occasions where the router’s User Interface was susceptible to an external attack.
Mitigation: Involved insuring that all routers are running firmware version 6.1.0 or newer. For more information or instructions on these mitigation steps, consult the Cradlepoint Knowledgebase or contact Cradlepoint Support.