3 matches found
CVE-2015-7284
Cross-site request forgery CSRF vulnerability on ZyXEL NBG-418N devices with firmware 1.00AADZ.3C0 allows remote attackers to hijack the authentication of arbitrary users...
CVE-2015-7284
CVE-2015-7284 describes a CSRF vulnerability in ZyXEL NBG-418N devices running firmware 1.00(AADZ.3)C0. An attacker can hijack the authentication of arbitrary users via forged requests, potentially executing actions with the victim’s session privileges. Documented impact includes remote attacker ...
ZyXEL NBG-418N router uses default credentials and is vulnerable to cross-site request forgery
Overview ZyXEL NBG-418N router, firmware version 1.00AADZ.3C0, uses default credentials and is vulnerable to cross-site request forgery. Description CWE-255: Credentials Management - CVE-2015-7283The ZyXEL NBG-418N web administration interface uses non-random default credentials of admin:1234. A...