5 matches found
CVE-2015-2350
creationtimestamp| type| source ---|---|--- 2018-05-24 15:44:33+00:00| seen| MISP/5b06d57d-f2b8-4357-9038-45d39f590eb0 2021-03-02 16:19:07+00:00| seen| Telegram/nCcqVKFU4OdOpuNaNy6ptVRIgzAiKlYRxciWVnlx5UQJdCMp...
MikroTik RouterOS Admin Password Change (CVE-2015-2350)
A vulnerability exists in MicroTik RouterOS, allowing an attacker to force an end-user to carry out undesired actions on the web application where the user is currently authenticated...
CVE-2015-2350
Cross-site request forgery CSRF vulnerability in MikroTik RouterOS 5.0 and earlier allows remote attackers to hijack the authentication of administrators for requests that change the administrator password via a request in the status page to /cfg...
CVE-2015-2350
CVE-2015-2350 affects MikroTik RouterOS 5.0 and earlier. A cross-site request forgery on the status page (/cfg) allows remote attackers to hijack the administrator’s session and change the administrator password. Root cause: CSRF vulnerability. No remediation details or patch/version information ...
CVE-2015-2350
Cross-site request forgery CSRF vulnerability in MikroTik RouterOS 5.0 and earlier allows remote attackers to hijack the authentication of administrators for requests that change the administrator password via a request in the status page to /cfg...