Vulnerability Details CVE-2021-31152
Multilaser Router AC1200 V02.03.01.45_pt contains a cross-site request forgery (CSRF) vulnerability. An attacker can enable remote access, change passwords, and perform other actions through misconfigured requests, entries, and headers.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.017
EPSS Ranking 81.7%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References
- http://packetstormsecurity.com/files/162258/Multilaser-Router-RE018-AC1200-Cross-Site-Request-Forgery.html
- http://seclists.org/fulldisclosure/2024/Mar/1
- https://www.youtube.com/watch?v=zN3DVrcu6Eg
- http://packetstormsecurity.com/files/162258/Multilaser-Router-RE018-AC1200-Cross-Site-Request-Forgery.html
- http://seclists.org/fulldisclosure/2024/Mar/1
- https://www.youtube.com/watch?v=zN3DVrcu6Eg
Products affected by CVE-2021-31152
-
cpe:2.3:h:multilaser:ac1200_re018:-
-
cpe:2.3:o:multilaser:ac1200_re018_firmware:v02.03.01.45_pt