Source |
CVE Liste |
Identifiant |
3531810 |
Date de publication |
2021-10-19 13:15:11 (vue: 2021-10-19 15:05:38) |
Titre |
CVE-2021-38480 |
Texte |
InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 are vulnerable to cross-site request forgery when unauthorized commands are submitted from a user the web application trusts. This may allow an attacker to remotely perform actions on the router’s management portal, such as making configuration changes, changing administrator credentials, and running system commands on the router. |
Envoyé |
Oui |
Condensat |
2021 38480 actions administrator allow application are attacker changes changing commands configuration credentials cross cve forgery from inhand ir615 making management may networks perform portal r4724 r4870 remotely request router routerĂ¢€™s running site submitted such system trusts unauthorized user versions vulnerable web when |
Tags |
|
Stories |
|
Notes |
|
Move |
|