CVE-2007-3786

Name of the Vulnerable Software and Affected Versions eSoft InstaGate EX2 UTM device versions prior to 3.1.20070615

Description A cross-site request forgery (CSRF) issue allows remote attackers to perform privileged actions as administrators. The vendor disputes the distribution of the vulnerable software, stating it was a custom build for a former customer.

Recommendations For versions prior to 3.1.20070615, update the firmware to version 3.1.20070615 or later to resolve the issue. As a temporary workaround, consider restricting access to the device's administrative interface to minimize the risk of exploitation.