2 matches found
CVE-2015-2917
The CVE-2015-2917 entry affects Securifi Almond devices and Almond 2015 devices where the web management interface omits the X-Frame-Options header, enabling clickjacking via crafted pages using FRAME/IFRAME/OBJECT. Root cause: missing X-Frame-Options header in affected firmware before AL1-R201EX...
Securifi Almond routers contains multiple vulnerabilities
Overview Securifi Almond, firmware version AL1-R200-L302-W33 and earlier, and Securifi Almond 2015, firmware version AL2-R088 and earlier, contain multiple vulnerabilities. Description CWE-330: Use of Insufficiently Random Values - CVE-2015-2914Securifi Almond and Almond 2015 use static source...