10 matches found
EUVD-2018-4498
Malware in sbrugna...
EUVD-2018-4499
Malware in sbrugna...
Intex N150 Device Cross-Site Request Forgery Vulnerability
Intex N150 devices is a wireless router product from Intex Technologies, India. A cross-site request forgery vulnerability exists in the router firmware in Intex N150 devices. A remote attacker can exploit this vulnerability to change user passwords and router settings...
Design/Logic Flaw
An issue was discovered on Intex N150 devices. The backup/restore option does not check the file extension uploaded for importing a configuration files backup, which can lead to corrupting the router firmware settings or even the uploading of malicious files. In order to exploit the vulnerability...
Design/Logic Flaw
An issue was discovered on Intex N150 devices. The router firmware suffers from multiple CSRF injection point vulnerabilities including changing user passwords and router settings...
CVE-2018-12529
An issue was discovered on Intex N150 devices. The router firmware suffers from multiple CSRF injection point vulnerabilities including changing user passwords and router settings...
CVE-2018-12528
An issue was discovered on Intex N150 devices. The backup/restore option does not check the file extension uploaded for importing a configuration files backup, which can lead to corrupting the router firmware settings or even the uploading of malicious files. In order to exploit the vulnerability...
CVE-2018-12529
An issue was discovered on Intex N150 devices. The router firmware suffers from multiple CSRF injection point vulnerabilities including changing user passwords and router settings...
CVE-2018-12529
CVE-2018-12529 affects Intex N150 router firmware. It describes multiple CSRF injection points enabling an attacker to change user passwords and router settings. Root cause: CSRF vulnerabilities in the firmware. Impact: unauthorized configuration changes and credential modifications. Public refer...
CVE-2018-12528
An issue was discovered on Intex N150 devices. The backup/restore option does not check the file extension uploaded for importing a configuration files backup, which can lead to corrupting the router firmware settings or even the uploading of malicious files. In order to exploit the vulnerability...