5 matches found
CVE-2021-20650
Cross-site request forgery CSRF vulnerability in ELECOM NCC-EWF100RMWH2 allows remote attackers to hijack the authentication of administrators and execute an arbitrary request via unspecified vector. As a result, the device settings may be altered and/or telnet daemon may be started...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in ELECOM NCC-EWF100RMWH2 allows remote attackers to hijack the authentication of administrators and execute an arbitrary request via unspecified vector. As a result, the device settings may be altered and/or telnet daemon may be started...
CVE-2021-20650
CVE-2021-20650 is a cross-site request forgery (CSRF) vulnerability affecting ELECOM NCC-EWF100RMWH2. The issue allows an attacker to hijack an administrator’s session and issue an arbitrary request, potentially altering device settings and enabling the telnet daemon via an unspecified vector. Pu...
CVE-2021-20650
Cross-site request forgery CSRF vulnerability in ELECOM NCC-EWF100RMWH2 allows remote attackers to hijack the authentication of administrators and execute an arbitrary request via unspecified vector. As a result, the device settings may be altered and/or telnet daemon may be started...
Elecom NCC-EWF100RMWH2 跨站请求伪造漏洞
The ELECOM NCC-EWF100RMWH2 is a wireless access device. The ELECOM NCC-EWF100RMWH2 suffers from a cross-site request forgery vulnerability that can be exploited by an attacker to construct a malicious URI, bait a request, and perform a malicious operation in the context of the target user...