Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2017-6127
Deferred
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-21 Feb, 2017 | 20:59
Updated At-20 Apr, 2025 | 01:37

Multiple cross-site request forgery (CSRF) vulnerabilities in the access portal on the DIGISOL DG-HR1400 Wireless Router with firmware 1.00.02 allow remote attackers to hijack the authentication of administrators for requests that (1) change the SSID, (2) change the Wi-Fi password, or (3) possibly have unspecified other impact via crafted requests to form2WlanBasicSetup.cgi.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.08.8HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Primary2.06.8MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
CPE Matches
digisol
digisol
>>dg-hr1400_firmware>>1.00.02
cpe:2.3:o:digisol:dg-hr1400_firmware:1.00.02:*:*:*:*:*:*:*
digisol
digisol
>>dg-hr1400>>-
cpe:2.3:h:digisol:dg-hr1400:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-352Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://seclists.org/fulldisclosure/2017/Feb/66cve@mitre.org
N/A
http://www.securityfocus.com/bid/96369cve@mitre.org
N/A
https://drive.google.com/file/d/0B6715xUqH18MeV9GOVE0ZmFrQUU/viewcve@mitre.org
Exploit
Third Party Advisory
http://seclists.org/fulldisclosure/2017/Feb/66af854a3a-2127-422b-91ae-364da2661108
N/A
http://www.securityfocus.com/bid/96369af854a3a-2127-422b-91ae-364da2661108
N/A
https://drive.google.com/file/d/0B6715xUqH18MeV9GOVE0ZmFrQUU/viewaf854a3a-2127-422b-91ae-364da2661108
Exploit
Third Party Advisory
Change History
0Changes found
Details not found