Vulnerability Details CVE-2017-2238
Cross-site request forgery (CSRF) vulnerability in Toshiba Home gateway HEM-GW16A firmware HEM-GW16A-FW-V1.2.0 and earlier and Toshiba Home gateway HEM-GW26A firmware HEM-GW26A-FW-V1.2.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 34.5%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
Products affected by CVE-2017-2238
-
cpe:2.3:h:toshiba:hem-gw16a:-
-
cpe:2.3:h:toshiba:hem-gw26a:-
-
cpe:2.3:o:toshiba:hem-gw16a_firmware:1.2.0
-
cpe:2.3:o:toshiba:hem-gw26a_firmware:1.2.0