Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Mercku M6a devices through 2.1.0 allow password changes via intranet CSRF attacks.
CVSS Information
CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
跨站请求伪造(CSRF)
Vulnerability Title
Mercku M6a 跨站请求伪造漏洞
Vulnerability Description
Mercku M6a是美国Mercku公司的一款WiFi路由器。 Mercku M6a 2.1.0及之前版本存在跨站请求伪造漏洞,该漏洞源于允许通过内部网络跨站请求伪造攻击更改密码。
CVSS Information
N/A
Vulnerability Type
N/A