2 results (0.004 seconds)

CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 1

Cross-site request forgery (CSRF) vulnerability in apply.cgi in Linksys WRT310Nv2 2.0.0.1 allows remote attackers to hijack the authentication of administrators for requests that change passwords and modify remote management ports. Vulnerabilidad de CSRF en apply.cgi en Linksys WRT310Nv2 2.0.0.1 permite a atacantes remotos secuestrar la autenticación de administradores para solicitudes que cambian contraseñas y modifican puertos de la gestión remota. • http://securityevaluators.com/knowledge/case_studies/routers/linksys_wrt310v2.php http://securityevaluators.com/knowledge/case_studies/routers/soho_router_hacks.php • CWE-352: Cross-Site Request Forgery (CSRF) •

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

The Cisco Linksys WRT350N with firmware 1.0.3.7 has "admin" as its default password for the "admin" account, which makes it easier for remote attackers to obtain access. El Cisco Linksys WRT350N con firmware v1.0.3.7 tiene "admin" como contraseña por defecto para la cuenta "admin", lo cual facilita obtener el acceso a atacantes remotos. • http://securityreason.com/securityalert/4319 http://www.securityfocus.com/archive/1/496756/100/0/threaded https://exchange.xforce.ibmcloud.com/vulnerabilities/45588 • CWE-255: Credentials Management Errors •