PT-2017-15272 · Trendnet · Ts-Ptcam+6
Takayoshi Isayama
·
Publicado
2017-07-07
·
Atualizado
2017-07-16
·
CVE-2017-2223
CVSS v3.1
8.8
Alta
| Vetor | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
TS-WPTCAM versions 1.19 and earlier
TS-PTCAM versions 1.19 and earlier
TS-PTCAM/POE versions 1.19 and earlier
TS-WLC2 versions 1.19 and earlier
TS-WLCE versions 1.19 and earlier
TS-WRLC versions 1.19 and earlier
TS-WPTCAM2 versions 1.01 and earlier
Description
A cross-site request forgery (CSRF) issue allows remote attackers to hijack the authentication of administrators via unspecified vectors.
Recommendations
For TS-WPTCAM versions 1.19 and earlier, update to a version later than 1.19.
For TS-PTCAM versions 1.19 and earlier, update to a version later than 1.19.
For TS-PTCAM/POE versions 1.19 and earlier, update to a version later than 1.19.
For TS-WLC2 versions 1.19 and earlier, update to a version later than 1.19.
For TS-WLCE versions 1.19 and earlier, update to a version later than 1.19.
For TS-WRLC versions 1.19 and earlier, update to a version later than 1.19.
For TS-WPTCAM2 versions 1.01 and earlier, update to a version later than 1.01.
Correção
CSRF
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Ts-Ptcam
Ts-Ptcam/Poe
Ts-Wlc2
Ts-Wlce
Ts-Wptcam
Ts-Wptcam2
Ts-Wrlc