MEDIUM🇬🇧 English

CVE-2014-4162

CVSS 6.8v2.0pub. 2014-06-16upd. 2026-05-06

Multiple cross-site request forgery (CSRF) vulnerabilities in the Zyxel P-660HW-T1 (v3) wireless router allow remote attackers to hijack the authentication of administrators for requests that change the (1) wifi password or (2) SSID via a request to Forms/WLAN_General_1.

oryginał EN
CVSS Vector
AV:N/AC:M/Au:N/C:P/I:P/A:P
  • Zyxel P 660hw

    HW
    Zyxel
    _t1
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2017-17901HIGH7.5ten sam produkt

ZyXEL P-660HW v3 devices allow remote attackers to cause a denial of service (CPU consumption) via a flood of ...

CVE-2013-3588HIGH7.8ten sam produkt

The web management interface on Zyxel P660 devices allows remote attackers to cause a denial of service (reboo...

CVE-2008-1255HIGH10.0ten sam produkt

The ZyXEL P-660HW series router maintains authentication state by IP address, which allows remote attackers to...

CVE-2008-1256HIGH10.0ten sam produkt

The ZyXEL P-660HW series router has "admin" as its default password, which allows remote attackers to gain adm...

CVE-2008-1254MEDIUM6.8ten sam produkt

Multiple cross-site request forgery (CSRF) vulnerabilities on the ZyXEL P-660HW series router allow remote att...

CVE-2014-4162 — MEDIUM 6.8 | CVEbaza.pl