CVE-2018-5720

Name of the Vulnerable Software and Affected Versions: DODOCOOL DC38 3-in-1 N300 Mini Wireless Range Extend RTN2-AW.GD.R3465.1.20161103

Description: A Cross-site request forgery (CSRF) issue allows remote attackers to hijack user authentication for requests that modify settings, potentially leading to changes in user credentials, Wi-Fi passwords, and other settings.

Recommendations: For DODOCOOL DC38 3-in-1 N300 Mini Wireless Range Extend RTN2-AW.GD.R3465.1.20161103, as a temporary workaround, consider restricting access to the device's settings page to minimize the risk of exploitation. Avoid using the device until a patch or fix is available. At the moment, there is no information about a newer version that contains a fix for this issue.