ID
VAR-201311-0488
TITLE
Multiple Cross-Site Request Forgery Vulnerabilities in ADB Discus DRG A125G
Trust: 0.6
DESCRIPTION
ADB Discus DRG A125G wlbasic.wl and wladv.wl have cross-site request forgery vulnerabilities that allow remote attackers to build malicious URIs, entice users to resolve, and perform malicious operations in the target user context. Discus DRG A125G is a wireless router product from Swiss ADB company. Cross-site request forgery vulnerability exists in ADB Discus DRG A125G router. A remote attacker could use this vulnerability to perform unauthorized operations and take control of an affected device
Trust: 1.35
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | adb | model: | discus drg a125g | scope: | - | version: | - | Trust: 0.9 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
THREAT TYPE
remote
Trust: 0.6
TYPE
cross-site request forgery
Trust: 0.6
EXTERNAL IDS
| db: | BID | id: | 63907 | Trust: 1.5 |
| db: | CNVD | id: | CNVD-2013-14742 | Trust: 0.6 |
| db: | CNNVD | id: | CNNVD-201311-438 | Trust: 0.6 |
REFERENCES
| url: | http://www.securityfocus.com/bid/63907 | Trust: 1.2 |
| url: | http://www.pirellibroadband.com/ | Trust: 0.3 |
CREDITS
Sebastin Magof
Trust: 0.6
SOURCES
| db: | CNVD | id: | CNVD-2013-14742 |
| db: | BID | id: | 63907 |
| db: | CNNVD | id: | CNNVD-201311-438 |
LAST UPDATE DATE
2022-05-17T01:45:23.686000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2013-14742 | date: | 2013-11-27T00:00:00 |
| db: | BID | id: | 63907 | date: | 2013-11-24T00:00:00 |
| db: | CNNVD | id: | CNNVD-201311-438 | date: | 2013-12-11T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2013-14742 | date: | 2013-11-27T00:00:00 |
| db: | BID | id: | 63907 | date: | 2013-11-24T00:00:00 |
| db: | CNNVD | id: | CNNVD-201311-438 | date: | 2013-11-24T00:00:00 |