Описание
Cross-site request forgery (CSRF) vulnerability in goform/wlanBasicSecurity on the HOT HOTBOX router with software 2.1.11 allows remote attackers to hijack the authentication of administrators for requests that change the WiFi Security field to Deactivated via the WifiSecurity parameter.
Ссылки
- Exploit
- Exploit
- Exploit
- Exploit
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:hot:hotbox_router_firmware:2.1.11:*:*:*:*:*:*:*
cpe:2.3:h:hot:hotbox_router:-:*:*:*:*:*:*:*
EPSS
Процентиль: 47%
0.00241
Низкий
5.4 Medium
CVSS2
Дефекты
CWE-352
Связанные уязвимости
github
больше 3 лет назад
Cross-site request forgery (CSRF) vulnerability in goform/wlanBasicSecurity on the HOT HOTBOX router with software 2.1.11 allows remote attackers to hijack the authentication of administrators for requests that change the WiFi Security field to Deactivated via the WifiSecurity parameter.
EPSS
Процентиль: 47%
0.00241
Низкий
5.4 Medium
CVSS2
Дефекты
CWE-352