Описание
Ubee EVW327 contains a cross-site request forgery vulnerability that allows attackers to enable remote access without user interaction. Attackers can craft a malicious webpage that automatically submits a form to change router remote access settings to port 8080 without the user's consent.
EPSS
Процентиль: 4%
0.00018
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-352
Связанные уязвимости
CVSS3: 5.3
github
22 дня назад
Ubee EVW327 contains a cross-site request forgery vulnerability that allows attackers to enable remote access without user interaction. Attackers can craft a malicious webpage that automatically submits a form to change router remote access settings to port 8080 without the user's consent.
EPSS
Процентиль: 4%
0.00018
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-352