PT-2019-9224 · Ipbrick · Ipbrick Os
Published
2019-05-13
·
Updated
2019-05-16
·
CVE-2018-16136
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
IPBRICK OS version 6.3
Description
An issue in the administrator interface allows the submission of multiple forms unwillingly by a victim due to the lack of Anti-CSRF token checks.
Recommendations
For IPBRICK OS version 6.3, consider implementing Anti-CSRF token checks in the administrator interface to prevent unwilling form submissions. As a temporary workaround, restrict access to the administrator interface to minimize the risk of exploitation.
Exploit
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ipbrick Os