Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site request forgery (CSRF) vulnerabilities in Technicolor (formerly Thomson) TC7200 STD6.01.12 allow remote attackers to hijack the authentication of administrators for requests that (1) perform a factory reset via a request to goform/system/factory, (2) disable advanced options via a request to goform/advanced/options, (3) remove ip-filters via the IpFilterAddressDelete1 parameter to goform/advanced/ip-filters, or (4) remove firewall settings via the cbFirewall parameter to goform/advanced/firewall.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Technicolor TC7200 跨站请求伪造漏洞
Vulnerability Description
Technicolor(前称Thomson,汤姆逊) TC7200是法国特艺(Technicolor)集团的一款调制解调器和路由器产品。 Technicolor TC7200 STD6.01.12版本中存在跨站请求伪造漏洞。攻击者可利用该漏洞(1)发送请求到goform/system/factory链接,执行恢复出厂设置(2)发送请求到goform/advanced/options链接禁用高级选项(3)借助IpFilterAddressDelete1参数发送到goform/advanced/ip-filt
CVSS Information
N/A
Vulnerability Type
N/A