05 Jui 2017
CVE-2017-8836 - CVE Vulnerability
CSRF exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_580hw2_710hw3_1350hw2_2500-7.0.1-build2093. The CGI scripts in the administrative interface are affected. This allows an attacker to execute commands, if a logged in user visits a malicious website. This can for example be used to change the credentials of the administrative webinterface. (CVSS:0.0) (Last Update:2017-06-05)
Vulnerability Details : CSRF exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_580hw2_710hw3_1350hw2_2500-7.0.1-build2093. The CGI scripts in the administrative interface are affected. This allows an attacker to execute commands, if a logged in user visits a malicious website. This can for example be used to change the credentials of the administrative webinterface. Publish Date : 2017-06-05 Last Update Date : 2017-06-05 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2017-8836
- References For CVE-2017-8836
| |||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2017-8836There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |