CVE-2016-7454

Sažetak

CSRF vulnerability on Technicolor TC dpc3941T (formerly Cisco dpc3941T) devices with firmware dpc3941-P20-18-v303r20421733-160413a-CMCST allows an attacker to change the Wi-Fi password, open the remote management interface, or reset the router.

Reference

http://www.securityfocus.com/bid/94881
https://packetstormsecurity.com/files/140121/XFINITY-Gateway-Technicolor-DPC3941T-Cross-Site-Request-Forgery.html

CVSS

Base:	7.9
Impact:	10.0
Exploitability:	5.5

Pristup

Vektor	Složenost	Autentikacija
ADJACENT_NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:A/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

21-12-2016 - 12:34

Objavljeno

17-12-2016 - 03:59