CVE-2018-5720 in DC38 3-in-1 N300 Mini Wireless Range Extend
摘要 (英语)
An issue was discovered on DODOCOOL DC38 3-in-1 N300 Mini Wireless Range Extend RTN2-AW.GD.R3465.1.20161103 devices. A Cross-site request forgery (CSRF) vulnerability allows remote attackers to hijack the authentication of users for requests that modify all the settings. This vulnerability can lead to changing an existing user's username and password, changing the Wi-Fi password, etc.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
预定
2018-01-16
披露
2018-01-29
状态
已确认
条目
VulDB provides additional information and datapoints for this CVE:
| 标识符 | 漏洞 | CWE | 可利用 | 对策 | CVE |
|---|---|---|---|---|---|
| 112612 | DODOCOOL DC38 3-in-1 N300 Mini Wireless Range Extend 跨网站请求伪造 | 352 | 概念验证 | 未定义 | CVE-2018-5720 |