RSS   Vulnerabilities for 'Ap910c firmware'   RSS

2018-03-06
 
CVE-2017-11650

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0_RC3 build r6594 allows remote attackers to inject arbitrary web script or HTML via vectors involving home.asp.

 
 
CVE-2017-11649

CWE-352
 

 
Cross-site request forgery (CSRF) vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0_RC3 build r6594 allows remote attackers to hijack the authentication of unspecified users for requests that enable SNMP on the remote device via vectors involving goform/setSnmp.

 

 >>> Vendor: Draytek 3 Products
Vigor 2700 router
Vigor 2700 router firmware
Ap910c firmware


Copyright 2018, cxsecurity.com

 

Back to Top