Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site request forgery (CSRF) vulnerabilities on Cisco Scientific Atlanta DPR2320R2 routers with software 2.0.2r1262-090417 allow remote attackers to hijack the authentication of administrators for requests that (1) change a password via the Password parameter to goform/RgSecurity; (2) reboot the device via the Restart parameter to goform/restart; (3) modify Wi-Fi settings, as demonstrated by the WpaPreSharedKey parameter to goform/wlanSecurity; or (4) modify parental controls via the ParentalPassword parameter to goform/RgParentalBasic.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Scientific Atlanta DPR2320R2 跨站请求伪造漏洞
Vulnerability Description
Cisco Scientific Atlanta DPR2320R2是美国思科(Cisco)公司的一款电缆调制解调器网关设备。该设备包含了电缆调制解调器、路由器和无线接入点,能够实现多台PC、笔记本或其它网络设备共享宽带接入。 使用2.0.2r1262-090417版本软件的Cisco Scientific Atlanta DPR2320R2路由器中存在跨站请求伪造漏洞。远程攻击者可通过诱使用户打开特制的连接利用该漏洞执行未授权操作,如:更改设备密码,重启设备,更改Wi-Fi设置,修改家长控制。
CVSS Information
N/A
Vulnerability Type
N/A