← Voltar para CVEs
CVE-2017-16886
N/ADescricao
The portal on FiberHome Mobile WIFI Device Model LM53Q1 VH519R05C01S38 uses SOAP based web services in order to interact with the portal. Unauthorized Access to Web Services via CSRF can result in an unauthorized change of username or password of the administrator of the portal.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado1/12/2018
Ultima modificacao11/21/2024
Fontenvd
Avistamentos honeypot0
Produtos afetados
fiberhome:lm53q1fiberhome:lm53q1_firmware
Fraquezas (CWE)
CWE-352
Referencias
http://seclists.org/fulldisclosure/2018/Jan/28(cve@mitre.org)
https://www.exploit-db.com/exploits/43460/(cve@mitre.org)
http://seclists.org/fulldisclosure/2018/Jan/28(af854a3a-2127-422b-91ae-364da2661108)
https://www.exploit-db.com/exploits/43460/(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.