Cross-Site Request Forgery in Belkin N900 Router
CVE-2013-3086

Currently unrated

Key Information:

Vendor: Belkin
Status: N900 Firmware; N900
Vendor: CVE Published:; 29 September 2014

What is CVE-2013-3086?

A Cross-Site Request Forgery vulnerability exists in the util_system.html component of the Belkin N900 router. This flaw allows remote attackers to exploit the authentication mechanism, enabling them to issue unauthorized requests that can modify crucial configuration settings, including administrative passwords and remote management settings, potentially compromising the security and integrity of the network.

References

http://securityevaluators.com/knowledge/case_studies/rout...

x_refsource_MISC

http://securityevaluators.com/knowledge/case_studies/rout...

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 29, 2014
Vulnerability Reserved
Apr 17, 2013