Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Devolo dLAN 500 AV Wireless+ 3.1.0-1 Cross-Site Request Forgery
Vulnerability Description
Devolo dLAN 500 AV Wireless+ 3.1.0-1 contains a cross-site request forgery vulnerability that allows attackers to perform administrative actions without proper request validation. Attackers can craft malicious web pages that trigger unauthorized configuration changes by exploiting predictable URL actions when a logged-in user visits the site.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
Devolo dLAN 500 AV Wireless+ 安全漏洞
Vulnerability Description
Devolo dLAN 500 AV Wireless+是德国Devolo公司的一款电力线通信适配器。 Devolo dLAN 500 AV Wireless+ 3.1.0-1版本存在安全漏洞,该漏洞源于缺少适当的请求验证,可能导致跨站请求伪造攻击。
CVSS Information
N/A
Vulnerability Type
N/A