CVE-2017-12703

Name of the Vulnerable Software and Affected Versions Westermo MRD-305-DIN versions prior to 1.7.5.0 Westermo MRD-315 versions prior to 1.7.5.0 Westermo MRD-355 versions prior to 1.7.5.0 Westermo MRD-455 versions prior to 1.7.5.0

Description A Cross-Site Request Forgery issue was discovered, where the application fails to verify if a request was intentionally provided by the user. This allows an attacker to trick a user into making a malicious request to the server.

Recommendations For Westermo MRD-305-DIN versions prior to 1.7.5.0, update to version 1.7.5.0 or later. For Westermo MRD-315 versions prior to 1.7.5.0, update to version 1.7.5.0 or later. For Westermo MRD-355 versions prior to 1.7.5.0, update to version 1.7.5.0 or later. For Westermo MRD-455 versions prior to 1.7.5.0, update to version 1.7.5.0 or later.