Lucene search

[email protected]CVE-2006-5175

HistoryOct 10, 2006 - 4:06 a.m.

CVE-2006-5175

2006-10-1004:06:00

CWE-352

[email protected]

web.nvd.nist.gov

cve-2006-5175

cross-site request forgery

csrf

terastation hd-htgl firmware

security vulnerability

nvd

administrative interface

8 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

70.3%

JSON

Cross-site request forgery (CSRF) vulnerability in the administrative interface for the TeraStation HD-HTGL firmware 2.05 beta 1 and earlier allows remote attackers to modify configurations or delete arbitrary data via unspecified vectors.

CPENameOperatorVersion
buffalotech:terastation_hd-htgl_firmwarebuffalotech terastation hd-htgl firmwareeq2.05_beta1

CPE	Name	Operator	Version
buffalotech:terastation_hd-htgl_firmware	buffalotech terastation hd-htgl firmware	eq	2.05_beta1

References

jvn.jp/jp/JVN%2393484133/index.html

secunia.com/advisories/22248

www.vupen.com/english/advisories/2006/3891

exchange.xforce.ibmcloud.com/vulnerabilities/29338

8 High

AI Score

Confidence

Low

7.6 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

70.3%

JSON