Sen Ueno

**Name of the Vulnerable Software and Affected Versions** NEC AtermWR9500N, AtermWR8600N, AtermWR8370N, AtermWR8160N, AtermWM3600R, and AtermWM3450RN routers (affected versions not specified) **Description** The issue concerns multiple cross-site request forgery (CSRF) vulnerabilities in the web-based management utility of the affected routers. These vulnerabilities allow remote attackers to hijack the authentication of administrators for requests, including initializing settings or rebooting the device. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.