Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2017-8836
HistoryJun 05, 2017 - 2:00 p.m.

CVE-2017-8836

2017-06-0514:00:00
mitre
www.cve.org
1

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

58.8%

JSON

CSRF exists on Peplink Balance 305, 380, 580, 710, 1350, and 2500 devices with firmware before fw-b305hw2_380hw6_580hw2_710hw3_1350hw2_2500-7.0.1-build2093. The CGI scripts in the administrative interface are affected. This allows an attacker to execute commands, if a logged in user visits a malicious website. This can for example be used to change the credentials of the administrative webinterface.

Related

cve 1
prion 1
nvd 1
packetstorm 1
zdt 1
openvas 1
seebug 1
exploitpack 1
exploitdb 1
cve
cve
CVE-2017-8836
2017-06-05 14:29:00
prion
prion
Cross site request forgery (csrf)
2017-06-05 14:29:00
nvd
nvd
CVE-2017-8836
2017-06-05 14:29:00
packetstorm
packetstorm
Peplink 7.0.0-build1904 XSS / CSRF / SQL Injection / File Deletion
2017-06-05 00:00:00
zdt
zdt
Peplink Balance Routers 7.0.0-build1904 - Multiple Vulnerabilities
2017-06-06 00:00:00
openvas
openvas
Peplink Balance Routers Multiple Vulnerabilities
2017-06-06 00:00:00
seebug
seebug
Multiple Vulnerabilities in peplink balance routers
2017-06-06 00:00:00
exploitpack
exploitpack
Peplink Balance Routers 7.0.0-build1904 - SQL Injection Cross-Site Scripting Information Disclosure
2017-06-06 00:00:00
exploitdb
exploitdb
Peplink Balance Routers 7.0.0-build1904 - SQL Injection / Cross-Site Scripting / Information Disclosure
2017-06-06 00:00:00

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

58.8%

JSON
Related for CVELIST:CVE-2017-8836
cve1prion1nvd1packetstorm1zdt1openvas1seebug1exploitpack1exploitdb1