Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-10019

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2014-10019
Last Modified 13 Jan 2015 07:24:28
Published 13 Jan 2015 06:59:27
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2014-10019

Summary

Multiple cross-site request forgery (CSRF) vulnerabilities in webconfig/wlan/country.html/country in the Teracom T2-B-Gawv1.4U10Y-BI modem allow remote attackers to hijack the authentication of administrators for requests that (1) change the SSID or (2) change the password via a crafted request.

Vulnerable Systems


References

XF - teracom-t2b-country-csrf(92715)

EXPLOIT-DB - 32943


Last Updated: 27 May 2016 11:07:31