Jacob Holcomb

Name of the Vulnerable Software and Affected Versions: D-Link DIR865L version 1.03 Description: The issue is related to an "Unauthenticated Hardware Linking" problem. Recommendations: For D-Link DIR865L version 1.03, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Belkin N300 (F7D7301v1) router Description: The issue allows remote attackers to bypass authentication using "Javascript debugging." Recommendations: For Belkin N300 (F7D7301v1) router, consider disabling Javascript debugging as a temporary workaround until a patch is available.

Name of the Vulnerable Software and Affected Versions: Linksys WRT310Nv2 version 2.0.0.1 Description: The issue is related to a Cross-Site Scripting (XSS) problem. Recommendations: For Linksys WRT310Nv2 version 2.0.0.1, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Static HTTP Server version 1.0 **Description** The issue is related to a Local Overflow in the Static HTTP Server. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** For version 1.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Belkin F5D8236-4 version v2 **Description** An authentication bypass issue exists in the web management interface. **Recommendations** For Belkin F5D8236-4 version v2, consider restricting access to the web management interface until a fix is available.

**Name of the Vulnerable Software and Affected Versions** Belkin N900 router (F9K1104v1) **Description** The issue concerns an Authentication Bypass in the Belkin N900 router, specifically utilizing "Javascript debugging". **Recommendations** For Belkin N900 router (F9K1104v1), as a temporary workaround, consider disabling Javascript debugging until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NETGEAR Centria WNDR4700 Firmware version 1.0.0.34 **Description** A Symlink Traversal issue exists. **Recommendations** For NETGEAR Centria WNDR4700 Firmware version 1.0.0.34, at the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Netgear WNDR4700 version 1.0.0.34 **Description** An Information Disclosure issue exists in the management web interface, which discloses the Pre-Shared Key (PSK) of the wireless LAN. **Recommendations** For Netgear WNDR4700 version 1.0.0.34, consider changing the PSK of the wireless LAN and restricting access to the management web interface until a fix is available.

**Name of the Vulnerable Software and Affected Versions** NETGEAR Centria WNDR4700 Firmware version 1.0.0.34 **Description** An Authentication Bypass issue exists, allowing any user to access the web administration portal without a password by visiting a specific URL. The affected URL is http://<router ip>/apply.cgi?/hdd usr setup.htm. **Recommendations** For NETGEAR Centria WNDR4700 Firmware version 1.0.0.34, as a temporary workaround, consider restricting access to the `apply.cgi` endpoint until a patch is available. Avoid using the `/hdd usr setup.htm` page in the affected API endpoint until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WDR4300 version 3.13.31 **Description** The issue concerns multiple CSRF vulnerabilities. **Recommendations** For TP-Link TL-WDR4300 version 3.13.31, consider disabling access to sensitive features until a patch is available. Restrict access to the router's web interface to minimize the risk of exploitation. Avoid using the router's web interface for sensitive operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** FreeFloat FTP Server version 1.0 **Description** The issue is a stack-based buffer overflow that allows remote authenticated users to execute arbitrary code. This is achieved by sending a long string in a PUT command. **Recommendations** For FreeFloat FTP Server version 1.0, update to a version that fixes this issue, as using a long string in the PUT command can lead to arbitrary code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** D-Link DIR865L router (Rev. A1) with firmware before 1.05b07 **Description** The issue affects the D-Link DIR865L router, allowing remote attackers to hijack the authentication of administrators. This can be achieved through multiple cross-site request forgery (CSRF) vulnerabilities. The exploitation can lead to changing the administrator password, enabling remote management via a request to "hedwig.cgi", or activating configuration changes via a request to "pigwidgeon.cgi". **Recommendations** For D-Link DIR865L router (Rev. A1) with firmware before 1.05b07: Update the firmware to version 1.05b07 or later to resolve the issue. As a temporary workaround, consider restricting access to the "hedwig.cgi" and "pigwidgeon.cgi" endpoints to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Actiontec MI424WR-GEN3I router with firmware 40.19.36 **Description** The issue concerns multiple cross-site request forgery (CSRF) vulnerabilities in the index.cgi file of the affected router. These vulnerabilities allow remote attackers to hijack the authentication of administrators for specific requests. The requests in question include adding administrative accounts via the `username` and `user level` parameters, as well as enabling remote administration through the `is telnet primary` and `is telnet secondary` parameters. **Recommendations** For the Actiontec MI424WR-GEN3I router with firmware 40.19.36, consider disabling remote administration until a patch is available to prevent exploitation of the CSRF vulnerabilities. Additionally, restrict access to the index.cgi file and its associated parameters (`username`, `user level`, `is telnet primary`, and `is telnet secondary`) to minimize the risk of unauthorized administrative account additions or changes to remote administration settings.

**Name of the Vulnerable Software and Affected Versions** JAMF Casper Suite versions prior to 8.61 **Description** The issue concerns multiple cross-site request forgery (CSRF) vulnerabilities in the editAccount.html file within the JAMF Software Server (JSS) interface. These vulnerabilities allow remote attackers to hijack the authentication of administrators, enabling them to perform unauthorized actions such as creating user accounts or changing passwords via a Save action. **Recommendations** For versions prior to 8.61, update to version 8.61 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Netsweeper (affected versions not specified) **Description** A cross-site scripting (XSS) issue exists in the WebAdmin Portal, specifically in tools/local lookup.php, allowing remote attackers to inject arbitrary web script or HTML via the `group` parameter in a lookup action. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Netsweeper WebAdmin Portal (affected versions not specified) **Description** A cross-site request forgery (CSRF) issue exists in the accountmgr/adminupdate.php file of the WebAdmin Portal. This allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts via an add action. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.