PT-2021-11447 · Genexis · Genexis Platinum 4410 V2

Published

2021-11-10

Updated

2021-11-13

CVE-2020-28137

CVSS v2.0

7.1

High

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions: Genexis Platinum 4410 V2 version 1.28

Description: The issue allows attackers to cause a denial of service by continuously restarting the router through cross site request forgery (CSRF).

Recommendations: For Genexis Platinum 4410 V2 version 1.28, consider disabling the web interface or restricting access to it until a patch is available to prevent exploitation of the CSRF issue.

Exploit

Fix

CSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-352

Related Identifiers

CVE-2020-28137

Affected Products

Genexis Platinum 4410 V2

PT-2021-11447 · Genexis · Genexis Platinum 4410 V2

CVE-2020-28137

Weakness Enumeration

Related Identifiers

Affected Products

References · 5