CVE-2021-32402

CVE Database · CVE-2021-32402

CVE-2021-32402

· HIGHModified

CVSS v3.1

8.8

EPSS

0.52%

Published

May 17, 2021

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Intelbras Router RF 301K Firmware 1.1.2 is vulnerable to Cross Site Request Forgery (CSRF) due to lack of validation and insecure configurations in inputs and modules.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-352

Affected Products (2)

intelbras · rf_301k_firmwarevulnerable

intelbras · rf_301k

References (2)

https://www.youtube.com/watch?v=X2cU9MBN2Ys

ExploitThird Party Advisory

https://www.youtube.com/watch?v=X2cU9MBN2Ys

ExploitThird Party Advisory

KEV Catalog EPSS Scores Vendors All CVEs