Axesstel : Security Vulnerabilities, CVEs, (CSRF)
Cross-Site Request Forgery (CSRF) exists in cgi-bin/ConfigSet on Axesstel MU553S MU55XS-V1.14 devices.
Max CVSS
8.8
EPSS Score
0.07%
Published
2017-09-13
Updated
2017-09-21
The web interface on the Axesstel MV 410R redirects users back to the referring page after execution of some CGI scripts, which makes it easier for remote attackers to avoid detection of cross-site request forgery (CSRF) attacks, as demonstrated by a redirect from the cgi-bin/wireless.cgi script.
Max CVSS
5.8
EPSS Score
0.15%
Published
2009-07-05
Updated
2018-10-10
2 vulnerabilities found