CVE-2016-1228

Name of the Vulnerable Software and Affected Versions NTT EAST Hikari Denwa routers versions PR-400MI, RT-400MI, and RV-440MI 07.00.1006 and earlier NTT WEST Hikari Denwa routers versions PR-400MI, RT-400MI, and RV-440MI 07.00.1005 and earlier

Description A cross-site request forgery (CSRF) issue allows remote attackers to hijack the authentication of arbitrary users. This can be exploited by tricking a user into performing unintended actions on the web application.

Recommendations For NTT EAST Hikari Denwa routers with firmware PR-400MI, RT-400MI, and RV-440MI 07.00.1006 and earlier, update the firmware to a version later than 07.00.1006. For NTT WEST Hikari Denwa routers with firmware PR-400MI, RT-400MI, and RV-440MI 07.00.1005 and earlier, update the firmware to a version later than 07.00.1005.