5 matches found
CVE-2021-20650
Cross-site request forgery CSRF vulnerability in ELECOM NCC-EWF100RMWH2 allows remote attackers to hijack the authentication of administrators and execute an arbitrary request via unspecified vector. As a result, the device settings may be altered and/or telnet daemon may be started...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in ELECOM NCC-EWF100RMWH2 allows remote attackers to hijack the authentication of administrators and execute an arbitrary request via unspecified vector. As a result, the device settings may be altered and/or telnet daemon may be started...
CVE-2021-20650
Cross-site request forgery CSRF vulnerability in ELECOM NCC-EWF100RMWH2 allows remote attackers to hijack the authentication of administrators and execute an arbitrary request via unspecified vector. As a result, the device settings may be altered and/or telnet daemon may be started...
CVE-2021-20650
CVE-2021-20650 is a cross-site request forgery (CSRF) vulnerability affecting ELECOM NCC-EWF100RMWH2. The issue allows an attacker to hijack an administrator’s session and issue an arbitrary request, potentially altering device settings and enabling the telnet daemon via an unspecified vector. Pu...
Elecom NCC-EWF100RMWH2 跨站请求伪造漏洞
The ELECOM NCC-EWF100RMWH2 is a wireless access device. The ELECOM NCC-EWF100RMWH2 suffers from a cross-site request forgery vulnerability that can be exploited by an attacker to construct a malicious URI, bait a request, and perform a malicious operation in the context of the target user...