Lated

**Name of the Vulnerable Software and Affected Versions** Ubee EVW327 (affected versions not specified) **Description** The Ubee EVW327 device contains a cross-site request forgery issue. An attacker can enable remote access without user interaction by crafting a malicious webpage that automatically submits a form to modify router remote access settings to port `8080` without the user’s knowledge. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.