5 matches found
EUVD-2017-18840
Malware in sbrugna...
EUVD-2017-18841
Malware in sbrugna...
CVE-2017-9930
Cross-Site Request Forgery CSRF exists in Green Packet DX-350 Firmware version v2.8.9.5-g1.4.8-atheeb, as demonstrated by a request to ajax.cgi that enables UPnP...
CVE-2017-9930
CVE-2017-9930 affects Green Packet DX-350 firmware version v2.8.9.5-g1.4.8-atheeb. The CSRF vulnerability is triggered by a request to ajax.cgi that enables UPnP, exposing control of UPnP functionality to an attacker. The linked sources confirm the device and firmware version, and describe the vu...
CVE-2017-9931
Green Packet DX-350 firmware v2.8.9.5-g1.4.8-atheeb contains a cross-site scripting (XSS) vulnerability. The flaw is triggered by the action parameter to ajax.cgi, enabling injection of arbitrary web script or HTML in the affected device.