CVSS: 7.8EPSS: 0%CPEs: 594EXPL: 0CVE-2011-1323
https://notcve.org/view.php?id=CVE-2011-1323
09 May 2011 — Yamaha RTX, RT, SRT, RTV, RTW, and RTA series routers with firmware 6.x through 10.x, and NEC IP38X series routers with firmware 6.x through 10.x, do not properly handle IP header options, which allows remote attackers to cause a denial of service (device reboot) via a crafted option that triggers access to an invalid memory location. Routers de serie Yamaha RTX, RT, SRT, RTV, RTW, y RTA con firmware v6.x hasta 10.x, y routers de serie NEC IP38X con firmware v6.x hasta v10.x, no maneja adecuadamente las opc... • http://jvn.jp/en/jp/JVN55714408/index.html • CWE-20: Improper Input Validation •
CVSS: 8.8EPSS: 0%CPEs: 18EXPL: 0CVE-2008-0524
https://notcve.org/view.php?id=CVE-2008-0524
31 Jan 2008 — Cross-site request forgery (CSRF) vulnerability in the management interface in multiple Yamaha RT series routers allows remote attackers to change password settings and probably other configuration settings as administrators via unspecified vectors. Vulnerabilidad de falsificación de petición en sitios cruzados (CSRF) en la interfaz de administración en múltiples routers de Yamaha RT series. Permite a atacantes remotos cambiar configuraciones de contraseñas y probablemente otros ajustes de configuración com... • http://jvn.jp/jp/JVN%2388575577/index.html • CWE-352: Cross-Site Request Forgery (CSRF) •