| ID |
CVE-2016-6158
|
| Sažetak |
Multiple cross-site request forgery (CSRF) vulnerabilities in Huawei WS331a routers with software before WS331a-10 V100R001C01B112 allow remote attackers to hijack the authentication of administrators for requests that (1) restore factory settings or (2) reboot the device via unspecified vectors. |
| Reference |
|
| CVSS |
| Base: | 7.1 |
| Impact: | 9.2 |
| Exploitability: | 4.9 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| NETWORK |
HIGH |
NONE |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| NONE |
COMPLETE |
COMPLETE |
|
| CVSS vektor |
AV:N/AC:H/Au:N/C:N/I:C/A:C |
| Zadnje važnije ažuriranje |
22-09-2016 - 14:20 |
| Objavljeno |
21-09-2016 - 14:25 |
