CVE-2014-3760 in DAP-1150जानकारी

सारांश

द्वारा MITRE

multiple cross-site request forgery (csrf) vulnerabilities in d-link dap 1150 with firmware 1.2.94 allow remote attackers to hijack the authentication of administrators for requests that (1) enable or (2) disable the dmz in the firewall/dmz section via a request to index.cgi or (3) add (4) modify or (5) delete url-filter settings in the control/url-filter section via a request to index.cgi as demonstrated by adding a rule that blocks access to google.com.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

आरक्षित करना

16/05/2014

प्रकटीकरण

16/05/2014

प्रविष्टि

VDB-13606

EPSS

0.00663

गतिविधियाँ

बहुत कम

स्रोत

Want to stay up to date on a daily basis?

Enable the mail alert feature now!