CVE-2016-1168

2016-04-0114:00:00

jpcert

www.cve.org

AI Score

9.1

Confidence

High

EPSS

0.002

Percentile

52.2%

JSON

Cross-site request forgery (CSRF) vulnerability on NEC Aterm WF800HP devices with firmware 1.0.17 and earlier allows remote attackers to hijack the authentication of arbitrary users.

References

jpn.nec.com/security-info/secinfo/nv16-004.html

jvn.jp/en/jp/JVN07818796/index.html

jvndb.jvn.jp/jvndb/JVNDB-2016-000035