3 matches found
Cross site request forgery (csrf)
Secutech RiS-11, RiS-22, and RiS-33 devices with firmware V5.07.52esFRI01 allow DNS settings changes via a goform/AdvSetDns?GO=wandns.asp request in conjunction with a crafted admin cookie...
CVE-2018-10080
Secutech RiS-11, RiS-22, and RiS-33 devices with firmware V5.07.52esFRI01 allow DNS settings changes via a goform/AdvSetDns?GO=wandns.asp request in conjunction with a crafted admin cookie...
CVE-2018-10080
CVE-2018-10080 affects Secutech RiS-11, RiS-22, and RiS-33 devices running firmware 5.07.52_es_FRI01. The vulnerability allows changing DNS settings via the HTTP goform/AdvSetDns?GO=wan_dns.asp endpoint when an attacker has a crafted admin cookie. The connected sources confirm the affected produc...