Cross-site request forgery (CSRF) vulnerability in Toshiba Home gateway HEM-GW16A firmware HEM-GW16A-FW-V1.2.0 and earlier and Toshiba Home gateway HEM-GW26A firmware HEM-GW26A-FW-V1.2.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.
[
{
"product": "Toshiba Home gateway HEM-GW16A",
"vendor": "Toshiba Lighting & Technology Corporation",
"versions": [
{
"status": "affected",
"version": "firmware HEM-GW16A-FW-V1.2.0 and earlier"
}
]
},
{
"product": "Toshiba Home gateway HEM-GW26A",
"vendor": "Toshiba Lighting & Technology Corporation",
"versions": [
{
"status": "affected",
"version": "firmware HEM-GW26A-FW-V1.2.0 and earlier"
}
]
}
]