CVE-2007-3787
The CVE covers the eSoft InstaGate EX2 UTM device where the admin password change flow does not require the existing password, enabling privilege escalation via CSRF or similar attacks from an unattended workstation. Affected component: admin password change mechanism. Root cause: missing verific...