Vulnerability Details CVE-2024-45372
MZK-DP300N firmware versions 1.04 and earlier contains a cross-site request forger vulnerability. Viewing a malicious page while logging in to the web management page of the affected product may lead the user to perform unintended operations such as changing the login password, etc.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 14.8%
CVSS Severity
CVSS v3 Score 6.5
Products affected by CVE-2024-45372
-
cpe:2.3:h:planex:mzk-dp300n:-
-
cpe:2.3:o:planex:mzk-dp300n_firmware:-
-
cpe:2.3:o:planex:mzk-dp300n_firmware:1.04