Skip to main content

Fl Switch 2005 CVE-2026-22322

| EUVDEUVD-2026-12791 HIGH
Cross-site Scripting (XSS) (CWE-79)
2026-03-18 CERTVDE
XSS Fl Switch 2005 Fl Switch 2008 Fl Switch 2016 Fl Switch 2105 Fl Switch 2108 Fl Switch 2116 Fl Switch 2204 2tc 2sfx Fl Switch 2205 Fl Switch 2206 2fx Fl Switch 2206 2fx Sm Fl Switch 2206 2fx Sm St Fl Switch 2206 2fx St Fl Switch 2206 2sfx Fl Switch 2206 2sfx Pn Fl Switch 2206c 2fx Fl Switch 2207 Fx Fl Switch 2207 Fx Sm Fl Switch 2208 Fl Switch 2208 Pn Fl Switch 2208c Fl Switch 2212 2tc 2sfx Fl Switch 2214 2fx Fl Switch 2214 2fx Sm Fl Switch 2214 2sfx Fl Switch 2214 2sfx Pn Fl Switch 2216 Fl Switch 2216 Pn Fl Switch 2304 2gc 2sfp Fl Switch 2306 2sfp Fl Switch 2306 2sfp Pn Fl Switch 2308 Fl Switch 2308 Pn Fl Switch 2312 2gc 2sfp Fl Switch 2314 2sfp Fl Switch 2314 2sfp Pn Fl Switch 2316 Fl Switch 2316 Pn Fl Switch 2404 2tc 2sfx Fl Switch 2406 2sfx Fl Switch 2406 2sfx Pn Fl Switch 2408 Fl Switch 2408 Pn Fl Switch 2412 2tc 2sfx Fl Switch 2414 2sfx Fl Switch 2414 2sfx Pn Fl Switch 2416 Fl Switch 2416 Pn Fl Switch 2504 2gc 2sfp Fl Switch 2506 2sfp Fl Switch 2506 2sfp Pn Fl Switch 2508 Fl Switch 2508 Pn Fl Switch 2512 2gc 2sfp Fl Switch 2514 2sfp Fl Switch 2514 2sfp Pn Fl Switch 2516 Fl Switch 2516 Pn Fl Switch 2608 Fl Switch 2608 Pn Fl Switch 2708 Fl Switch 2708 Pn Fl Switch 2303 8sp1 Fl Nat 2008 Fl Nat 2208 Fl Nat 2304 2gc 2sfp Fl Switch 2008f Fl Switch 2316 K1 Fl Switch 2506 2Sfp K1 Fl Switch 2508 K1 Fl Switch Tsn 2316 Fl Switch Tsn 2312 2gc 2sfp Fl Switch Tsn 2314 2sfp Fl Switch 5924 4gc Fl Switch 5916 8Gc 4Sfp Fl Switch 5924sfp 4gc Fl Switch 5924 4Sfp Fl Switch 5916Sfp 8Gc 4Sfp
7.1
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.1 HIGH
AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
Low

Lifecycle Timeline

7
Re-analysis Queued
Apr 27, 2026 - 19:37 vuln.today
cvss_changed
Analysis Updated
Apr 16, 2026 - 06:21 EUVD-patch-fix
executive_summary
Re-analysis Queued
Apr 16, 2026 - 05:29 backfill_euvd_patch
patch_released
Patch available
Apr 16, 2026 - 05:29 EUVD
3.53
EUVD ID Assigned
Mar 18, 2026 - 08:00 euvd
EUVD-2026-12791
Analysis Generated
Mar 18, 2026 - 08:00 vuln.today
CVE Published
Mar 18, 2026 - 07:34 nvd
HIGH 7.1

DescriptionCVE.org

A stored cross‑site scripting (XSS) vulnerability in the Link Aggregation configuration interface allows an unauthenticated remote attacker to create a trunk entry containing malicious HTML/JavaScript code. When the affected page is viewed, the injected script executes in the context of the victim’s browser, enabling unauthorized actions such as interface manipulation. The session cookie is secured by the httpOnly Flag. Therefore an attacker is not able to take over the session of an authenticated user.

AnalysisAI

A cross-site scripting vulnerability (CVSS 7.1) that allows an unauthenticated remote attacker. High severity vulnerability requiring prompt remediation.

Technical ContextAI

CWE-79 (Cross-site Scripting). CVSS 7.1 indicates high severity.

RemediationAI

Monitor vendor channels for patch availability.

Share

CVE-2026-22322 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy