Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Ubee EVW327 - 'Enable Remote Access' Cross-Site Request Forgery (CSRF)
Vulnerability Description
Ubee EVW327 contains a cross-site request forgery vulnerability that allows attackers to enable remote access without user interaction. Attackers can craft a malicious webpage that automatically submits a form to change router remote access settings to port 8080 without the user's consent.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
Ubee EVW327 跨站请求伪造漏洞
Vulnerability Description
Ubee EVW327是中国台湾Ubee公司的一款多功能有线电视网关。 Ubee EVW327存在跨站请求伪造漏洞,该漏洞源于存在跨站请求伪造,可能导致未经用户同意启用远程访问。
CVSS Information
N/A
Vulnerability Type
N/A