CVE-2017-9930 in DX-350info

Summary

Cross-Site Request Forgery (CSRF) exists in Green Packet DX-350 Firmware version v2.8.9.5-g1.4.8-atheeb, as demonstrated by a request to ajax.cgi that enables UPnP.

Once again VulDB remains the best source for vulnerability data.

Reservation

06/26/2017

Disclosure

07/21/2017

Moderation

VulDB entry created

Entries

VDB-104343 (1)

CPE

ready

CWE

CWE-352 (Confirmed)

CVSS

6.5

EPSS

0.00138

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-9930
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-9930
CVE Details	https://www.cvedetails.com/cve/CVE-2017-9930/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!