CVE-2019-5986

🗓️ 12 Sep 2019 15:58:55Reported by jpcertType

CSRF vulnerability in Hikari Denwa router/Home GateWay

Reporter	Title	Published	Views	Family All 8
CNVD	Nippon Telegraph and Telephone Hikari Denwa Phone Home Gateway Cross-Site Request Forgery Vulnerability	28 Jun 201900:00	–	cnvd
Cvelist	CVE-2019-5986	12 Sep 201915:58	–	cvelist
EUVD	EUVD-2019-15554	7 Oct 202500:30	–	euvd
Japan Vulnerability Notes	JVN#43172719: Multiple vulnerabilities in Hikari Denwa router/Home GateWay	27 Jun 201900:00	–	jvn
Japan Vulnerability Notes	Multiple vulnerabilities in Hikari Denwa router/Home GateWay	27 Jun 201906:36	–	jvn
NVD	CVE-2019-5986	12 Sep 201917:15	–	nvd
Prion	Cross site request forgery (csrf)	12 Sep 201917:15	–	prion
RedhatCVE	CVE-2019-5986	22 May 202510:29	–	redhatcve

NVD

Vulners

Node

ntt-east pr-s300ne_firmwareRange≤19.41

AND

ntt-east pr-s300neMatch-

Node

ntt-east rt-s300ne_firmwareRange≤19.41

AND

ntt-east rt-s300neMatch-

Node

ntt-east rv-s340ne_firmwareRange≤19.41

AND

ntt-east rv-s340neMatch-

Node

ntt-east pr-s300hi_firmwareRange≤19.01.0005

AND

ntt-east pr-s300hiMatch-

Node

ntt-east rt-s300hi_firmwareRange≤19.01.0005

AND

ntt-east rt-s300hiMatch-

Node

ntt-east rv-s340hi_firmwareRange≤19.01.0005

AND

ntt-east rv-s340hiMatch-

Node

ntt-east pr-s300se_firmwareRange≤19.40

AND

ntt-east pr-s300seMatch-

Node

ntt-east rt-s300se_firmwareRange≤19.40

AND

ntt-east rt-s300seMatch-

Node

ntt-east rv-s340se_firmwareRange≤19.40

AND

ntt-east rv-s340seMatch-

Node

ntt-east pr-400ne_firmwareRange≤7.42

AND

ntt-east pr-400neMatch-

Node

ntt-east rt-400ne_firmwareRange≤7.42

AND

ntt-east rt-400neMatch-

Node

ntt-east rv-440ne_firmwareRange≤7.42

AND

ntt-east rv-440neMatch-

Node

ntt-east pr-400ki_firmwareRange≤07.00.1010

AND

ntt-east pr-400kiMatch-

Node

ntt-east rt-400ki_firmwareRange≤07.00.1010

AND

ntt-east rt-400kiMatch-

Node

ntt-east rv-440ki_firmwareRange≤07.00.1010

AND

ntt-east rv-440kiMatch-

Node

ntt-east pr-400mi_firmwareRange≤07.00.1012

AND

ntt-east pr-400miMatch-

Node

ntt-east rt-400mi_firmwareRange≤07.00.1012

AND

ntt-east rt-400miMatch-

Node

ntt-east rv-440mi_firmwareRange≤07.00.1012

AND

ntt-east rv-440miMatch-

Node

ntt-east pr-500ki_firmwareRange≤01.00.0090

AND

ntt-east pr-500kiMatch-

Node

ntt-east rt-500ki_firmwareRange≤01.00.0090

AND

ntt-east rt-500kiMatch-

Node

ntt-east rs-500ki_firmwareRange≤01.00.0070

AND

ntt-east rs-500kiMatch-

Node

ntt-east pr-500mi_firmwareRange≤01.01.0014

AND

ntt-east pr-500miMatch-

Node

ntt-east rt-500mi_firmwareRange≤01.01.0014

AND

ntt-east rt-500miMatch-

Node

ntt-east rs-500mi_firmwareRange≤03.01.0019

AND

ntt-east rs-500miMatch-

Node

ntt-west pr-s300ne_firmwareRange≤19.41

AND

ntt-west pr-s300neMatch-

Node

ntt-west rt-s300ne_firmwareRange≤19.41

AND

ntt-west rt-s300neMatch-

Node

ntt-west rv-s340ne_firmwareRange≤19.41

AND

ntt-west rv-s340neMatch-

Node

ntt-west pr-s300hi_firmwareRange≤19.01.0005

AND

ntt-west pr-s300hiMatch-

Node

ntt-west rt-s300hi_firmwareRange≤19.01.0005

AND

ntt-west rt-s300hiMatch-

Node

ntt-west rv-s340hi_firmwareRange≤19.01.0005

AND

ntt-west rv-s340hiMatch-

Node

ntt-west pr-s300se_firmwareRange≤19.40

AND

ntt-west pr-s300seMatch-

Node

ntt-west rt-s300se_firmwareRange≤19.40

AND

ntt-west rt-s300seMatch-

Node

ntt-west rv-s340se_firmwareRange≤19.40

AND

ntt-west rv-s340seMatch-

Node

ntt-west pr-400ne_firmwareRange≤7.42

AND

ntt-west pr-400neMatch-

Node

ntt-west rt-400ne_firmwareRange≤7.42

AND

ntt-west rt-400neMatch-

Node

ntt-west rv-440ne_firmwareRange≤7.42

AND

ntt-west rv-440neMatch-

Node

ntt-west pr-400ki_firmwareRange≤07.00.1010

AND

ntt-west pr-400kiMatch-

Node

ntt-west rt-400ki_firmwareRange≤07.00.1010

AND

ntt-west rt-400kiMatch-

Node

ntt-west rv-440ki_firmwareRange≤07.00.1010

AND

ntt-west rv-440kiMatch-

Node

ntt-west pr-400mi_firmwareRange≤07.00.1012

AND

ntt-west pr-400miMatch-

Node

ntt-west rt-400mi_firmwareRange≤07.00.1012

AND

ntt-west rt-400miMatch-

Node

ntt-west rv-440mi_firmwareRange≤07.00.1012

AND

ntt-west rv-440miMatch-

Node

ntt-west pr-500ki_firmwareRange≤01.00.0090

AND

ntt-west pr-500kiMatch-

Node

ntt-west rt-500ki_firmwareRange≤01.00.0090

AND

ntt-west rt-500kiMatch-

Node

ntt-west pr-500mi_firmwareRange≤01.01.0011

AND

ntt-west pr-500miMatch-

Node

ntt-west rt-500mi_firmwareRange≤01.01.0011

AND

ntt-west rt-500miMatch-

[
  {
    "product": "Hikari Denwa router/Home GateWay",
    "vendor": "Hikari Denwa router/Home GateWay provided by NIPPON TELEGRAPH AND TELEPHONE EAST CORPORATION",
    "versions": [
      {
        "status": "affected",
        "version": "PR-S300NE/RT-S300NE/RV-S340NE firmware version Ver. 19.41 and earlier"
      },
      {
        "status": "affected",
        "version": "PR-S300HI/RT-S300HI/RV-S340HI firmware version Ver.19.01.0005 and earlier"
      },
      {
        "status": "affected",
        "version": "PR-S300SE/RT-S300SE/RV-S340SE firmware version Ver.19.40 and earlier"
      },
      {
        "status": "affected",
        "version": "PR-400NE/RT-400NE/RV-440NE firmware version Ver.7.42 and earlier"
      },
      {
        "status": "affected",
        "version": "PR-400KI/RT-400KI/RV-440KI firmware version Ver.07.00.1010 and earlier"
      },
      {
        "status": "affected",
        "version": "PR-400MI/RT-400MI/RV-440MI firmware version Ver. 07.00.1012 and earlier"
      },
      {
        "status": "affected",
        "version": "PR-500KI/RT-500KI firmware version Ver.01.00.0090 and earlier"
      },
      {
        "status": "affected",
        "version": "RS-500KI firmware version Ver.01.00.0070 and earlier"
      },
      {
        "status": "affected",
        "version": "PR-500MI/RT-500MI firmware version Ver.01.01.0014 and earlier"
      },
      {
        "status": "affected",
        "version": "RS-500MI firmware version Ver.03.01.0019 and earlier"
      }
    ]
  },
  {
    "product": "Hikari Denwa router/Home GateWay",
    "vendor": "Hikari Denwa router/Home GateWay provided by NIPPON TELEGRAPH AND TELEPHONE WEST CORPORATION",
    "versions": [
      {
        "status": "affected",
        "version": "PR-S300NE/RT-S300NE/RV-S340NE firmware version Ver. 19.41 and earlier"
      },
      {
        "status": "affected",
        "version": "PR-S300HI/RT-S300HI/RV-S340HI firmware version Ver.19.01.0005 and earlier"
      },
      {
        "status": "affected",
        "version": "PR-S300SE/RT-S300SE/RV-S340SE firmware version Ver.19.40 and earlier"
      },
      {
        "status": "affected",
        "version": "PR-400NE/RT-400NE/RV-440NE firmware version Ver.7.42 and earlier"
      },
      {
        "status": "affected",
        "version": "PR-400KI/RT-400KI/RV-440KI firmware version Ver.07.00.1010 and earlier"
      },
      {
        "status": "affected",
        "version": "PR-400MI/RT-400MI/RV-440MI firmware version Ver. 07.00.1012 and earlier"
      },
      {
        "status": "affected",
        "version": "PR-500KI/RT-500KI firmware version Ver.01.00.0090 and earlier"
      },
      {
        "status": "affected",
        "version": "PR-500MI/RT-500MI firmware version Ver.01.01.0011 and earlier"
      }
    ]
  }
]

Source	Link
ntt-west	www.ntt-west.co.jp/kiki/support/flets/hgw/190626.html
jvn	www.jvn.jp/en/jp/JVN43172719/index.html

21 Nov 2024 04:45Current

8.8High risk

Vulners AI Score8.8

CVSS 26.8

CVSS 3.18.8

EPSS0.00147

CWE-352